Linux Projects

opportunity

Installation of openvpn in a linux server.

Install OpenVPN on an active Ubuntu Server 22.04 LTS (Jammy Jellyfish) without disrupting existing production applications. Tasks: perform a safe, non-intrusive installation and configuration of OpenVPN, ensure compatibility with current services, create secure server and client certificates, configure routing and firewall rules, enable systemd service with automatic restart, and validate connectivity with minimal downtime. Provide rollback steps, comprehensive documentation of changes, and post-installation verification to guarantee stability and security.

opportunity

Dedicated Linux Server Health Check, Upgrade Advice & Migration

Project Overview: I am looking for an experienced Linux server specialist to review the health and setup of our current dedicated server with Fasthosts and advise whether we should proceed with an upgrade and migration. We currently run 3 live websites on a dedicated Ubuntu 20.04 server via Plesk. The server has 32GB RAM. A recent backup failure flagged a RAM issue where the system removed the snapshot during the backup process. No further alerts have come through since, but it has raised concerns about overall capacity and stability. Fasthosts have recommended either optimisation or upgrading. Proposed Upgrade (from Fasthosts): • Server: E3-1270-64-HDD • RAM: 64GB • OS option: Ubuntu 24.04 with Plesk What I Need From You: Phase 1 – Server Health Check & Review • Review current server setup (Ubuntu 20.04, Plesk Obsidian) • Check RAM usage, CPU, disk, services, and general performance • Review backup configuration and failure cause • Identify any inefficiencies or risks • Confirm whether upgrade is genuinely required or if optimisation would suffice Phase 2 – Upgrade Recommendation • Provide a clear recommendation: Stay and optimise OR Upgrade and migrate • If upgrading, confirm whether the proposed Fasthosts server is suitable Important Constraint: We must remain on PHP 8.2.30. No PHP upgrades to be carried out as part of this work due to compatibility with existing code. Phase 3 – Migration (if approved) • Full migration of 3 websites to new server • Maintain Plesk structure and configurations • Ensure: Minimal downtime All services tested post-migration Backups working correctly Key Requirements: • Strong experience with: Linux (Ubuntu) Plesk Fasthosts / similar environments Server migrations Backup systems (Acronis or similar) • Must work carefully with live production sites • Clear communication and sensible approach Pricing: I require a fixed price for: 1. Health check and recommendation 2. Migration if needed Additional Notes: • Current issue appears linked to RAM during backups, but system otherwise looks stable • Storage is nearing capacity on backup system

Secure Multi-Tenant Print System Setup (CUPS/IPPS/Linux)

We are looking for an experienced Linux engineer to design and implement a secure, isolated print environment using CUPS. The goal is to build a lean, reliable system that delivers the required functionality without unnecessary complexity or ongoing maintenance overhead. Project Objectives The system should: Securely handle print jobs Support automatic printing for standard queues Allow manual release for sensitive jobs (e.g. finance) Enable safe re-routing of jobs if a printer is unavailable Ensure jobs are not retained longer than necessary Operate independently without affecting other services Key Requirement: Isolation A critical requirement is strict separation between environments: No visibility of other users’ printers or queues No access to other users’ print jobs No risk of jobs being sent to the wrong printer Strong access control and secure handling Technical Scope You will be responsible for: Setting up an isolated environment (VM preferred) Configuring CUPS with IPPS (TLS encryption) Creating hybrid queue logic (auto-print + hold/release) Implementing lightweight printer health checks Enabling manual fallback routing Applying security hardening and access controls Configuring automatic job cleanup policies Devices Printers include models similar to the following: Toshiba e-STUDIO Katun Arivia my budget is $50 but i may pay more if your work is fast and perfect (All expected to support secure IPP/IPPS where possible.) Important Considerations We want to avoid: Overengineered solutions Complex custom scripting where not required High-maintenance or costly components We prefer: Native CUPS functionality Simple, predictable behaviour Low ongoing maintenance What We Expect Before full implementation, you should: Review the scope Recommend the most cost-effective and simplest architecture Identify anything that may increase time or complexity Suggest improvements where needed Deliverables Clear architecture outline Implementation of the agreed setup Documentation of configuration and approach Ideal Candidate Strong experience with Linux systems (AlmaLinux/RHEL-based) Hands-on experience with CUPS and IPP/IPPS Knowledge of secure system design and isolation Ability to deliver simple, practical solutions

Stopping bot registrations

Hello there, I have a bespoke website (php/Linux) and am getting automated registrations. Looking for a basic solution to prevent this without causing the user to much friction. Thank you for your bid. Robert

opportunity

Deploy Python AI Automation System on Linux Server

Deploy Python AI Automation System on Linux Server (Social + Multilingual Sub‑sites) Duration 3–4 working days Skills needed Python, Linux/Ubuntu, Nginx, MySQL, REST APIs, Social Media APIs (Meta Graph, X, Pinterest), S3‑compatible storage About the project We run Librifly.com, a platform selling downloadable art, images, stories, poetry and maps, also available as posters, notebooks and books. We already have a complete AI automation system built: all Python code is written, tested and documented. This is not a coding project. You will deploy and configure the existing code on our Linux server and verify that the full system works end‑to‑end. Think of it as a technical installation and setup job: server environment, Nginx, database migrations, social media API configuration and final testing. What the system does • Discovers content niches from Librifly.com (e.g. Monet, Vintage France travel, New York art). • Generates complete sub‑sites for each niche using AI (e.g. monet.librifly.com). • Populates each sub‑site with real products and pricing from Librifly.com. • Publishes each sub‑site in 9 languages, one new language per day. • Automatically posts to Instagram, Facebook, X (Twitter) and Pinterest when each site goes live. Server environment • Hetzner Cloud server (Finland), Ubuntu + Nginx. • MySQL database already running. • Static IP and domain configured. • Python 3.12 and Redis to be installed (apt install). Scope of work Step 1 — Server setup • Install Python 3.12 and Redis, create a virtualenv. • Install Python packages from requirements.txt. • Configure .env with our API keys. • Run 4 SQL migration files. • Set up Nginx wildcard subdomain (*.librifly.com). • Obtain wildcard SSL via Let’s Encrypt certbot. • Configure two systemd services (Celery worker and scheduler) to start on boot. Step 2 — Pipeline test • Run the pipeline manually and verify a sub‑site is generated. • Check HTML renders correctly in a browser. • Verify Nginx serves it on the correct subdomain. • Adjust scraper selectors if needed by inspecting Librifly.com. Step 3 — Social media setup • Create a Meta developer app (Instagram + Facebook). • Configure long‑lived access tokens for posting. • Set up X (Twitter) and Pinterest developer apps. • Configure a Hetzner Object Storage bucket (S3‑compatible). • Send at least one successful test post on each of the four platforms. Step 4 — Multilingual test • Run migration for language tables. • Build and test a Spanish version of one sub‑site. • Confirm hreflang SEO tags in HTML. • Check CJK (Chinese/Japanese/Korean) pages load with correct fonts. Required skills • Python 3 (read/debug existing code). • Linux Ubuntu server admin. • Nginx (vhosts, wildcard subdomains). • SSL with Let’s Encrypt / Certbot. • MySQL (running SQL files, basic admin). • Social media APIs, especially Meta Graph API. • REST API basics (X and Pinterest). • S3‑compatible storage (e.g. Hetzner Object Storage). What we provide • Full source code (4 documented zip files). • README files with step‑by‑step instructions. • SSH access to our server (securely shared). • All required API keys. Deliverables 1. At least one sub‑site live at a .librifly.com subdomain. 2. Celery worker and scheduler running as system services and surviving restarts. 3. One successful test post on Instagram, Facebook, X and Pinterest. 4. Brief handover note covering token expiry dates and how to run the pipeline manually. Meta setup note Meta (Instagram/Facebook) app setup is the most time‑consuming part because the portal is slow and the flow is non‑obvious. Please only apply if you have previously set up a Meta Graph API app; if not, say so clearly in your proposal. How to apply Please include: 1. Whether you have set up a Meta Graph API app before (Instagram/Facebook posting). 2. Whether you have configured Nginx wildcard subdomains and Let’s Encrypt wildcard SSL. 3. When you can start and hours per day you can commit this week. 4. Your fixed‑price quote for the full project.

Secure Multi-Tenant Print System Setup (CUPS/IPPS/Linux)

We are looking for an experienced Linux engineer to design and implement a secure, isolated print environment using CUPS. The goal is to build a lean, reliable system that delivers the required functionality without unnecessary complexity or ongoing maintenance overhead. Project Objectives The system should: Securely handle print jobs Support automatic printing for standard queues Allow manual release for sensitive jobs (e.g. finance) Enable safe re-routing of jobs if a printer is unavailable Ensure jobs are not retained longer than necessary Operate independently without affecting other services Key Requirement: Isolation A critical requirement is strict separation between environments: No visibility of other users’ printers or queues No access to other users’ print jobs No risk of jobs being sent to the wrong printer Strong access control and secure handling Technical Scope You will be responsible for: Setting up an isolated environment (VM preferred) Configuring CUPS with IPPS (TLS encryption) Creating hybrid queue logic (auto-print + hold/release) Implementing lightweight printer health checks Enabling manual fallback routing Applying security hardening and access controls Configuring automatic job cleanup policies Devices Printers include models similar to the following: Toshiba e-STUDIO Katun Arivia (All expected to support secure IPP/IPPS where possible.) Important Considerations We want to avoid: Overengineered solutions Complex custom scripting where not required High-maintenance or costly components We prefer: Native CUPS functionality Simple, predictable behaviour Low ongoing maintenance What We Expect Before full implementation, you should: Review the scope Recommend the most cost-effective and simplest architecture Identify anything that may increase time or complexity Suggest improvements where needed Deliverables Clear architecture outline Implementation of the agreed setup Documentation of configuration and approach Ideal Candidate Strong experience with Linux systems (AlmaLinux/RHEL-based) Hands-on experience with CUPS and IPP/IPPS Knowledge of secure system design and isolation Ability to deliver simple, practical solutions Experienced Linux engineer required to design and implement a secure, isolated print environment using CUPS/IPPS. Deliver a lean, reliable solution that securely handles print jobs, supports automatic printing for standard queues, provides hold-and-release for sensitive jobs, enables safe rerouting when printers are unavailable, and enforces timely job cleanup. Implement VM-based isolation, TLS-encrypted IPPS, hybrid queue logic, lightweight health checks, manual fallback routing, hardened access controls, and concise documentation. Recommend simplest cost-effective architecture and identify complexity risks. The ideal candidate has AlmaLinux/RHEL experience, strong CUPS and IPP/IPPS knowledge, and a focus on minimal maintenance and native functionality.

Secure Multi-Tenant Print System Setup (CUPS/IPPS/Linux)

We are looking for an experienced Linux engineer to design and implement a secure, isolated print environment using CUPS. The goal is to build a lean, reliable system that delivers the required functionality without unnecessary complexity or ongoing maintenance overhead. Project Objectives The system should: Securely handle print jobs Support automatic printing for standard queues Allow manual release for sensitive jobs (e.g. finance) Enable safe re-routing of jobs if a printer is unavailable Ensure jobs are not retained longer than necessary Operate independently without affecting other services Key Requirement: Isolation A critical requirement is strict separation between environments: No visibility of other users’ printers or queues No access to other users’ print jobs No risk of jobs being sent to the wrong printer Strong access control and secure handling Technical Scope You will be responsible for: Setting up an isolated environment (VM preferred) Configuring CUPS with IPPS (TLS encryption) Creating hybrid queue logic (auto-print + hold/release) Implementing lightweight printer health checks Enabling manual fallback routing Applying security hardening and access controls Configuring automatic job cleanup policies Devices Printers include models similar to the following: Toshiba e-STUDIO Katun Arivia (All expected to support secure IPP/IPPS where possible.) Important Considerations We want to avoid: Overengineered solutions Complex custom scripting where not required High-maintenance or costly components We prefer: Native CUPS functionality Simple, predictable behaviour Low ongoing maintenance What We Expect Before full implementation, you should: Review the scope Recommend the most cost-effective and simplest architecture Identify anything that may increase time or complexity Suggest improvements where needed Deliverables Clear architecture outline Implementation of the agreed setup Documentation of configuration and approach Ideal Candidate Strong experience with Linux systems (AlmaLinux/RHEL-based) Hands-on experience with CUPS and IPP/IPPS Knowledge of secure system design and isolation Ability to deliver simple, practical solutions

Senior Linux Server Admin (Ubuntu/Plesk/Docker/PrestaShop)

Overview I am looking for a reliable and experienced Linux server administrator to take real ownership of live production infrastructure. The goal is long-term cooperation with one technically strong person who communicates clearly, works pragmatically, and takes responsibility for the systems they manage. Infrastructure • VPS 20 (Contabo) — n8n, Docker, Nextcloud, Vikunja, Uptime Kuma • VPS 30 (Contabo) — Plesk, WordPress, Email (Postfix, Dovecot, SpamAssassin) • VPS 30 (Contabo) — PrestaShop live shop (Nginx + Apache, Cloudflare, PHP-FPM) • Dedicated Backup Server (Interserver) — automated backups, Google Drive, NFS Your First Task — System Cleanup & Security Takeover The previous administrator left the systems in a partially configured and insecure state. Before anything else, you will: Access Cleanup • Remove all SSH keys, SFTP users, and credentials of the previous administrator across all servers • Remove any email accounts or system accounts created by or forwarding to the previous administrator • Rotate all relevant passwords (root, SSH, Plesk, SFTP, database) and confirm with documentation Open Technical Items to Resolve • Cloudflare: 2 domains were started but not finished — in total 8 domains have to be set up and configured • Cloudflare: fix caching configuration that is causing instability on live websites • OpenVPN Community Edition: full fresh installation; provide 4 .ovpn certificates — owner (full access), PrestaShop developer (restricted), Member Area developer (restricted), yourself (temporary — revoked on project completion) • SSH: restrict access on all servers — must not remain open to Anywhere (0.0.0.0/0) • Cron jobs: fix broken cron on backup server (/home/en8en/backup missing); notifications only on failure, not on success • SFTP: screenshot per server confirming active users — only PrestaShop developer and Membo developer • Email server: written proposal for migration from MX Guarddog to Rspamd (open source), including user experience impact, then implementation • PrestaShop server: complete remaining optimizations (e.g. TTFB currently 4.4 seconds) • Backup monitoring: notifications only on failure — applies to all servers Ongoing Responsibilities • Manage Ubuntu production servers, Plesk environments, WordPress and PrestaShop setups • Keep systems updated, patched, and secure; manage domains, DNS, SSL, and email configurations • Manage developer access (SSH / SFTP); diagnose issues independently using logs and monitoring • Understand backup systems and restore procedures; work carefully on live systems without downtime What Matters To Me • Reliability — do what you say, confirm only what is actually done • Proactive mindset — identify and communicate problems before they become incidents • Propose solutions, align with me before acting, then execute cleanly • No delegation — you must be the person doing the work; no third-party access without explicit written permission • Long-term cooperation — I am not looking for a one-time fix Working Model • Freelance / hourly — estimated 5–10 hours per month during normal operation • All larger tasks discussed and agreed before execution • Updates submitted as Word documents with screenshots as proof of completion Please Include In Your Application • Short summary of relevant experience and similar infrastructure managed • General availability and typical response times • Confirmation that you are the person doing all the work Please submit your own rate proposal. The budget field is a platform requirement only and does not reflect the actual agreed rate

opportunity

We're searching for a Kubernetes Expert

We are looking for a highly experienced Kubernetes/Linux engineer to test a confidential technical environment involving Kubernetes ingress and production-style troubleshooting. You must be very comfortable with Linux, Kubernetes, kubectl, and understanding what realistic command outputs, remediation paths, and incident workflows should look like inside a large engineering organisation. We are specifically looking for someone who has worked in real production environments and has previous on-call or incident-response experience. This is not an implementation or support role. Your job will be to act as an experienced engineer, work through a confidential technical scenario, We especially want someone confident enough to say, “how a real engineer/team would do this,” and explain why. Full details, access, and commercial context will only be shared after NDA signature. This is a short-term role: we expect either 0.5–1 day initially, then a further 0.5 day the following week. Weekend work is fine. If the engagement goes well, this may become an ongoing arrangement for a couple of days per month across multiple projects. Ideal background • Strong Linux command-line skills • Strong Kubernetes production experience • Experience debugging ingress / service / endpoint / readiness / DNS issues • Prior on-call or incident-response experience • Able to provide clear written feedback and practical suggestions To apply, please include • Your years of Kubernetes production experience • A short note on your on-call/incident background • Which Kubernetes environments/controllers you’ve used • One example of a relevant production incident you’ve worked on

Penetration Testing

I need someone to run a penetration testing on my client's server and give me findings. It is a linux based VPS which host two wordpress and few nodejs based websites. Your job will be: 1. Run penetration testing and try to break security 2. Recommend security updated and changes to make server + websites more secure 3. apply any required security updates or modifications on server if needed as well Thank can be a regular base work (not permanent but as per need occasionally for different projects ) Please let me know cost and timeline you need for this. Best Regards, Kamran

NEED help on setup / managing / hosting a server

Seeking an experienced professional to provision, configure, and manage a reliable server environment. Responsibilities include secure initial setup, OS and software installation, performance tuning, automated backups, monitoring, patch management, and ongoing maintenance. Applicant must ensure robust security hardening, optimize for uptime and scalability, and provide clear documentation of configuration and procedures. Proven experience with cloud and/or dedicated hosting, Linux administration, and server orchestration is required.

opportunity

Trading bot development

Project Overview We are building a high-performance, low-latency trading engine designed for microstructure-based execution strategies in a high-tax (STT) environment. This is NOT a basic retail trading bot. This system requires advanced system-level engineering, multi-core CPU architecture control, shared memory communication, and real-time observability dashboard. The focus of this project is minimizing latency between signal generation and order execution while maintaining regulatory compliance (Order-to-Trade Ratio constraints). The developer must understand low-level performance optimization, concurrency architecture, and Linux system behavior. Core Technical Requirements Python Version (Mandatory) The engine must use: Python 3.13 Free-Threaded build (3.13t) NOT standard Python 3.10–3.12 Reason: Standard Python uses the Global Interpreter Lock (GIL), which blocks true parallelism. In low-latency systems, a 1–2ms delay caused by GIL contention is unacceptable. Multi-Core Architecture with CPU Core Pinning The engine must: Assign specific modules to specific CPU cores Use os.sched_setaffinity (Linux only) Prevent OS core migration (avoid context switching) Modules include: Sentinel (Risk & OTR monitoring) Sonar (Market entropy / regime detection) Oracle (Signal calculation loop) Execution Engine (Order placement) The goal is to eliminate unpredictable latency spikes caused by OS scheduling and cache invalidation. Inter-Process Communication Standard Python queues are NOT acceptable. Communication must use: multiprocessing.shared_memory Memory-mapped buffers Lock-free ring buffer architecture Reason: Standard queues introduce locking and object allocation overhead, increasing latency. The target is sub-millisecond internal communication between signal generator and execution engine. Latency Measurement The system must measure: End-to-end order placement latency Round-trip time (RTT) Module processing time Using: time.perf_counter_ns() Latency histogram logging This data must be streamed to the dashboard. Order Execution Logic The system should: Prefer passive limit orders Include 200ms cancel logic Manage Order-to-Trade Ratio (OTR) Implement controlled order flooding logic (compliant with broker rules) This is not a simple market order bot. FRONTEND REQUIREMENTS (React Dashboard) The frontend is NOT a trading UI. It is a real-time monitoring and control cockpit. Preferred stack: React (Vite or Next.js) WebSocket for live streaming Lightweight charting (Canvas or WebGL-based) Required Dashboard Modules Sentinel Panel Real-time RTT graph 20ms lockdown threshold indicator CPU usage per pinned core Emergency status Sonar Panel Market regime indicator (Attack / Veto mode) Entropy score display Zero-trust gate status Oracle Panel Weighted Order Book Imbalance (WOBI) heatmap Liquidity imbalance % Signal strength score Must use high-performance rendering (Canvas, not heavy SVG). Execution Panel Net Expected Value (NEV) Fill rate % Cancel rate Order-to-Trade Ratio (OTR) status Emergency Kill Switch Dashboard must include: Global kill switch Sends signal to monitoring service Monitoring service writes flag to shared memory Engine halts immediately Dashboard must NOT communicate directly with broker API. Deployment Requirements Linux-based environment (Ubuntu preferred) Dockerized setup preferred Separate processes: Trading engine Monitoring microservice React frontend Google Cloud compatible. 10 MOST IMPORTANT SKILLS TO ADD Attach these skills on Freelancer: Python 3 (Advanced Concurrency & Multiprocessing) Must understand GIL, free-threaded builds, shared memory. Low-Latency System Design Experience reducing microsecond-level bottlenecks. Linux System Programming Knowledge of CPU affinity, process scheduling, performance tuning. Multithreading & Multiprocessing Architecture Designing multi-core optimized applications. Memory Management & Shared Memory IPC Experience with mmap, shared memory buffers. Financial Market Microstructure Knowledge Understanding order books, liquidity imbalance, passive vs aggressive orders. WebSocket & Real-Time Streaming Required for live dashboard data. React.js (Performance-Optimized UI) Real-time data rendering without UI lag. Performance Profiling & Benchmarking Must measure and optimize latency. Cloud Deployment (Google Cloud / Linux VM / Docker) Production-ready deployment experience. VERY IMPORTANT Add this to filter weak developers: Applicants must answer the following: Have you worked with Python shared memory or mmap before? Have you implemented CPU core pinning on Linux? How would you measure internal engine latency? How would you prevent dashboard from affecting trading engine performance? This will eliminate 80% of generic bot developers.

Need to convert windows script to Work on linux

I have a script that consists of a a few windows batch files and python files. It basically uses free apps (yt-dlp and mp4decrypt) to save videos from sites like YouTube. It also decrypts encrypted mp4 files. It would be nice to have this converted to work on Linux. Experience with converting windows code to Linux and video downloading/remuxing would be helpful.

opportunity

Linux Sysadmin/WordPress Migration

1. Provision & baseline the new server Hardware / provider UK-based dedicated server AMD EPYC 4344P or better 64GB RAM NVMe storage ≥1Gbps guaranteed bandwidth OS & access Install supported modern Linux (Ubuntu LTS / AlmaLinux / Rocky) Fully update OS, kernel, packages Set timezone to UTC SSH key-only access Disable password logins Confirm remote console / recovery access 2. Install & configure control panel Plesk Install Plesk Obsidian – Web Pro licence Enable only required services: Web Mail Backups Disable unused extras 3. Secure the base system Firewall: Open only required ports (80/443, mail ports, SSH restricted) Fail2ban enabled (SSH + mail) No public database exposure System users and permissions locked down 4. Build a clean, modern web stack Web server Nginx (primary) PHP via PHP-FPM PHP (explicit configuration – not defaults) PHP 8.3 (unless incompatibility found) OPcache enabled and tuned Set production-grade limits: Memory Upload size Execution time Input vars Database MariaDB Tune for: ~1GB WordPress database Proper InnoDB buffer pool sizing Sensible max connections Enable slow query logging temporarily for tuning Caching Install and enable Redis Decide on one caching strategy: Server-side page cache (FastCGI) Redis object cache Remove overlapping / redundant WordPress cache plugins Ensure correct behaviour for: Logged-in users WooCommerce cart & checkout Admin area 5. Email migration & reliability (critical) Mail hosting Enable Plesk mail stack (Postfix + Dovecot) One email domain ~200 mailboxes Migration Export and import all mailboxes Passwords must remain unchanged Preserve folders and timestamps Validate mail flow before cutover Configuration Fix SMTP conflicts in WordPress Choose one SMTP solution Validate: Password reset emails WooCommerce order emails Form submissions Bulk mail (if still used) Configure SPF, DKIM, DMARC, PTR 6. WordPress migration Take a clean backup of WordPress (files + DB) Restore onto new server Configure: wp-config.php memory constants Correct file permissions Validate: Front-end Admin Elementor WooCommerce checkout Forms No leftover legacy config 7. Cron & background jobs Disable traffic-based WP-Cron Configure real system cron Confirm: WooCommerce tasks Email jobs Scheduled maintenance 8. Backups & recovery (non-negotiable) Configure daily automated backups Store backups off-server Agree retention policy Test a restore (site + database + mailbox) before DNS cutover Document restore process 9. Monitoring & logging Enable: CPU / RAM monitoring Disk usage alerts Review: Nginx error logs PHP error logs Database logs Confirm no silent failures post-migration 10. Staging, cutover & downtime control Before cutover Full staging clone on new server Validate everything works end-to-end Lower DNS TTLs Cutover Weekend window preferred Minimal downtime Final data sync Switch DNS Monitor live traffic and mail Rollback Clear rollback plan if something fails 11. Documentation & handover Developer must provide: Plesk login details PHP / DB / cache configuration summary Mail server details Backup & restore instructions What not to change Any known limitations 12. Success criteria (how the job is judged) After completion: Faster TTFB and admin performance Stable WooCommerce checkout Reliable email delivery No legacy OS or kernel risk No stacked caching Tested backups Platform ready to scale without re-architecture One-line summary you can give any developer “This is a clean rebuild on a new EPYC dedicated server with Plesk Web Pro, followed by a controlled WordPress + mail migration, performance tuning, tested backups, and a low-downtime cutover.” Current situation (now) Website and email run on a shared VPS with a legacy Linux stack, Cpanel Old kernel and mixed configurations increase risk and complexity WordPress performance is constrained (disk I/O, DB, concurrency) Caching and email setups are overlapping and inconsistent Backups and recovery have not been fully tested Platform is functional but not future-proof Target situation (where we’re going) Move to a UK-based dedicated server (AMD EPYC, NVMe, 64GB RAM) Rebuild on a modern, fully supported Linux OS Use Plesk Web Pro for clean management of web, email, and backups Deploy a simplified, deliberate performance stack Migrate WordPress and email with minimal downtime Implement tested backups, monitoring, and documentation End state: faster, safer, scalable, and easier to manage Everything is working as now, to set specifications.

opportunity

Secure, Isolated, Print Stack (CUPS / IPPS / AlmaLinux 9)

Overview We are looking for an experienced Linux engineer to advise and implement the most efficient way to build a secure, isolated print environment. The priority is achieving the required functionality without unnecessary complexity or cost. This is not just a build task — we want input on the smartest, leanest way to deliver this architecture. What We’re Trying to Achieve A print system where: Jobs are held securely on submission Automatically released only when the correct printer is available Can be manually re-routed if needed Are not retained longer than necessary Run in a way that does not impact other services (web, mail, Nextcloud) Key Question (Critical) Before proceeding with full implementation, we want you to review the scope and answer: What is the most cost-effective way to achieve this? Are there simpler alternatives to any part of the design? Which elements (if any) will significantly increase time or cost? What would you change, remove, or simplify while maintaining the outcome? Proposed Scope (For Review & Optimisation) You will assess and (if appropriate) implement: Core Areas Isolated environment (VM preferred, container acceptable if justified) CUPS with IPPS (TLS enforced) Logical hold queues (jobs do not auto-print) Default printer routing with health checks Manual fallback routing Lightweight admin-only release interface Automatic job cleanup and no long-term retention Resource limits to protect other services Security hardening (spool access, user isolation) Important Considerations We are specifically cautious about: Overengineering (e.g. unnecessary portals or complex routing logic) High-maintenance components Features that look good on paper but add real-world overhead Anything that introduces ongoing cost or operational burden What We Want From You Assessment first Identify what is essential vs optional Highlight cost/time-heavy components Suggest a lean architecture Then implementation (if aligned) Provide: Clear explanation of approach Any trade-offs What needs to be standardised if rolled out further Key Requirement We are not looking for a “full spec build at any cost.” We are looking for the best practical solution that delivers: Security Reliability Predictable behaviour …without unnecessary expense or complexity. We are not looking for indicative pricing; feel free to ask questions.

Linux incident response / sysadmin

Hi, I’m looking for an experienced Linux incident response / sysadmin to help with a server issue. A Linux server previously had an xmrig miner infection. Most artefacts have been removed, but something on the system is still intermittently attempting to download a miner script via wget. The application code has been thoroughly checked and appears clean. This looks like a system-level persistence issue (cron, systemd service/timer, user-level service, SSH abuse, etc.). What I’m looking for: • Identify and remove the persistence mechanism • Confirm whether there is any evidence of data access/exfiltration • Advise whether the server is safe to keep or if a rebuild is recommended Context: • Ubuntu server • Node.js / Next.js app • PM2 • auditd already enabled • Sensitive app secrets will be rotated after the work Credentials WILL be checked prior to work commencing

opportunity

Proofreading the Croatian version of an IT company's website

Goal: Ensure that the terminology, ordering interface, and product descriptions are natural for a Croatian IT professional and comply with hosting industry standards. 1. Requirements Native Croatian speaker. Technical background: Deep understanding of IT infrastructure (Dedicated Servers, VPS/VDS, Network Technologies, Cloud). Localization experience: Ability to not just translate, but adapt the meaning to the local market. 2. What needs to be verified (Scope of work) The following elements on the specified pages need to be audited: Buttons and CTAs: Correctness of calls to action (Order, Configure, Buy). Technical parameters: correct specifications (cores, threads, disk types, network bandwidth). Filters and selectors: logic and translation in server configurators. Navigation: menu items, footer. 3. List of priority pages to check Home: https://introserv.com/hr/ Dedicated Servers: https://introserv.com/products/dedicated-servers/ General VPS: https://introserv.com/products/vps/ Specialized VPS: Linux VPS: https://introserv.com/products/vps-linux/ Windows VPS: https://introserv.com/products/vps-windows/ Pricing Pages and Listings: VPS Prices: https://introserv.com/products/vps-prices/ Server Prices: https://introserv.com/hr/products/server-prices/ Oder Pages Dedicated servers: https://introserv.com/hr/order/dc2-instant-39 Order pages VPS: https://introserv.com/hr/order/vps-v-1core-linux These pages are a priority, followed by all other pages in the Products, Solutions, and ABOUT US categories

Server Compromise (cPanel Hosting Account Malware Cleanup)

cPanel Hosting Account Malware Cleanup + WordPress Rebuild (Confirmed Server Compromise) We are looking for a senior WordPress & Linux hosting security expert to perform a complete forensic cleanup and rebuild of a compromised cPanel hosting account. This is NOT a simple WordPress malware cleanup. The entire hosting account has been compromised. A detailed forensic report has already been completed. The compromise includes: • Multiple PHP backdoors • File-write RCE webshell • Malicious .htaccess hijack • Traffic redirect malware • Shadow WordPress installations (/fresh and /pixoll directories) • Modified wp-config.php • 72,000+ injected spam users in database • Suspicious FTP account with full home directory access • Locked malicious files (0444 permissions) • Ongoing file modifications as recent as March 2026 Hosting environment: cPanel (Namecheap shared hosting) Multiple MySQL databases Shared IP environment Scope of Work Required The expert must: Perform full account-level cleanup (not just WordPress) Remove all malware and backdoors Remove shadow WordPress installations Delete suspicious FTP accounts Rotate all credentials (cPanel, FTP, MySQL, WP) Replace WordPress core with clean installation Clean infected database (remove 72k spam users safely) Verify no remaining persistence mechanisms Audit .htaccess and server configs Ensure site is safe to submit for Google reconsideration If required, we are open to: Full cPanel account reset and rebuild Migration to a fresh hosting environment Important You must have: Proven experience with advanced WordPress malware removal Experience handling RCE webshell infections Experience with cPanel server-level audits Ability to work via SSH if needed Ability to provide a detailed post-cleanup report This is NOT a beginner job. Do not apply if you only use plugins to “scan and delete”. Deliverables Clean hosting account Clean WordPress installation Clean database No shadow installations Security hardening implemented Final written security report Confirmation of no reinfection vectors When Applying Please include: Description of similar infections you have cleaned Your proposed approach (brief step outline) Estimated timeline Whether you recommend full account rebuild