build monit alternative to monitor services and daemons
migrate to btrfs setup
http3 QUIC on nginx
add Prometheus and grafana services
automate secret deployment
configure joe user to use fish shell with some niceties, but as on demand shell, not on login
monitor and alert on error logs
move more crons to shepherd timed services
grafana and dashboards
mail on certain error logs
gocix services for grafana and others (OCI powered shepherds)
increase rate limit for static sites and assets, ggg logos is a good measure
automatic updates of the server unattended
nftables
backup rotation and cleanup
switch to bash for server login shell