How to install the ModSecurity NGINX module in CentOS/RHEL 8


by Danila Vershinin, February 20, 2020

Here’s how to easily install ModSecurity for NGINX in CentOS/RHEL 8.

Read More...

NGINX: try_files is evil too


by Danila Vershinin, February 18, 2020

The if directive in NGINX is evil. How about try_files?

Read More...

Stock CentOS kernel in OVH


by Danila Vershinin, January 28, 2020

OVH is a great dedicated hosting platform. Their kernels are not so great sometimes

Read More...

Beyond Privoxy


by Danila Vershinin, December 14, 2019

There is software that we all know and love, and more often than not, forget about it. Privoxy is one of them. It allows you to filter ads and is also a go-to solution for anonymous browsing when it is coupled with Tor. With the arrival of adblock plugins in Chrome, and the web increasingly […]

Read More...

NGINX locations: performance impact and optimizations


by Danila Vershinin, December 12, 2019

NGINX location and rewrite directives. What are the best practices?

Read More...

Configure IKEV2 (Strongswan) VPN client in CentOS/RHEL 8 (Gnome GUI)


by Danila Vershinin, December 8, 2019

How to configure a Strongswan (IKEV2) client VPN connection in CentOS/RHEL 8

Read More...

Fix FirewallD in CentOS 7


by Danila Vershinin, November 17, 2019

Here’s how to fix the FirewallD startup problem in CentOS 7. A permanent fix, not a half solution!

Read More...

Protect your signup forms from SPAM with NGINX and CleanTalk


by Danila Vershinin, September 6, 2019

Suppose you’re running Mautic on CentOS 7 machine. You’ve created a signup form and placed it on the front page of your website. The form is very simple: an input for an email address and Subscribe button. Bots are hitting it hard. They submit email addresses to your form, your database of subscribers have lots […]

Read More...

NGINX and phpMyAdmin. When you have to…


by Danila Vershinin, August 18, 2019

The phpMyAdmin is the famous web client for MySQL databases. However, being an open-source product, it is subject to security vulnerabilities. The best thing is not using it at all. All the modern MySQL GUI clients support connecting via SSH tunneling. So you don’t have to open MYSQL port for outside. Neither you expose the […]

Read More...

DNS caching and beyond, in CentOS/RHEL 7 and 8


by Danila Vershinin, July 21, 2019

Make use of DNS caching on your CentOS/RHEL 7/8 to speed up your server even faster!

Read More...