saharshpamecha.hashnode.devPermission Drift Is Killing Your Automation — Building permguard for Fleet-Wide Script Hardening (OpenClaw AI Agents Included)Day 4 of 100 Days of DevOps Permission drift is the silent killer of production automation. You deploy a script with chmod 755, and three months later it's 000 or 777. Your cron job fails at 2 AM, you19h ago·5 min read
saharshpamecha.hashnode.devSSH Hardening with ssh-shield: Automating CIS ComplianceDirect root SSH login is a security anti-pattern. Every CIS Benchmark, every NIST guideline, and every breach post-mortem tells you to disable it. Yet I still see it enabled in production environments1d ago·5 min read
saharshpamecha.hashnode.devexpiry-guard: Managing Temporary Linux User Accounts with Automatic ExpiryDay 2 of 100 Days of DevOps Introduction Every production environment has them. Contractors who need temporary access. Consultants brought in for specific projects. Developers rotating through on-cal2d ago·4 min read
saharshpamecha.hashnode.devRefreshing Linux Service Account Fundamentals: Non-Interactive Shell Best PracticesProbably this is my first deep-dive blog post! I have always been mostly spending my time as a spectator in the tech space — keenly following, learning, internalizing... but never really had the guts 3d ago·6 min read
