The web server (openBSD httpd plus relayd) and Ghost engine write log files with the access path, user agent string and the IP addresses of the client accessing this website. These are used for troubleshooting in the event of a crisis and are otherwise not evaluated. This information is also removed on log rotation. Since there are no user accounts, no tracking cookies or similar and the website is read-only, I do not consider these log files as personal.
Access to these logs is restricted to myself only, and the log data has never been requested nor provided to any third party, and will never be provided under any circumstances. The server itself is a Virtual Private Server hosted with Contabo. To prevent the provider from accessing the data I have set up full disk encryption while booting from the VPN console to grub command line manually. Even so, I cannot guarantee this website's security, since it's impossible to have perfectly secure software, but I try my best to make unauthorized access to this server unlikely, by the use of limited local accounts, regular updates, strong security practices and regular security assessments.
If you wish to hide the IP address too, a TOR address for the blog is provided. This way only the access will be recorded, then deleted on log rotation.
This website contains links to external services. I assume no responsibility for the content linked from this blog.
Unlike most of the websites on the web, no third party service will be accessed automatically once you open danielonsecurity.com, so your browser will communicate to this server only.
This website is for educational purposes only, it doesn't attempt to make any kind of profit, so there will never be ads nor sponsors here.
Apart from that, no data is collected, stored or evaluated in any form.