May 19, 2026
Nginx Proxy Manager Cleanup
Why: The 2026-05 audit found retired NPM proxy hosts and a pile of orphaned or duplicate TLS certificates.
We performed a cleanup of the Nginx Proxy Manager (NPM) configuration, removing obsolete proxy hosts and certificates that were no longer in use.
1. Removing Retired Proxy Hosts
Several domains had their hosting retired and were sitting inert in NPM.
- Action: Removed three proxy hosts via the NPM web UI: blog.botaa.org (which had a dead :3333 backend), dsm-iii.com, and dsm-3.com. These domains may become email-forward-only in the future.
2. Cleaning up TLS Certificates
Over time, multiple certificates accumulated in NPM that were no longer attached to any active proxy host.
- Action: Removed sixteen orphaned, duplicate, or typo Let's Encrypt certificates, all flagged as "Not Used" by NPM. This included three duplicate router.skyhouse.dev certs, the typo cert "valut.skyhouse.dev", netpulse-era slow.skyhouse.dev certs, and assorted botaa-subdomain leftovers.