Proper Magento Fail2ban Configuration


by Danila Vershinin, September 4, 2018

Protect your Magento like a real PRO using adapting banning powered by Fail2ban

Read More...

Dissecting HTTPS redirect requirements of HSTS


by Danila Vershinin, August 5, 2018

Understanding the implications of HSTS header on the HTTP canonical redirects.

Read More...

Modern approaches to secure websites in 2018


by Danila Vershinin, August 3, 2018

Some of the things you really want to take care about to secure your website.

Read More...

Magento 2 Security Checklist


by Danila Vershinin, June 24, 2018

When you prepare to launch your Magento 2 website, security is one of the primary areas of concern. Whether you plan to accept credit card data directly on your website, or on a payment provider’s pages – you are required to achieve PCI compliance. Otherwise, you’ll find your business at risk of being banned from […]

Read More...

How to remove the Server header in NGINX


by Danila Vershinin,

How to hide the Server HTTP header in NGINX and more: hide the fact of using NGINX altogether.

Read More...

How Install ModSecurity NGINX module in CentOS/RHEL 7


by Danila Vershinin, April 20, 2018

Here’s how to easily install ModSecurity to your NGINX in CentOS/RHEL 7.

Read More...

PHP Security: disable error_reporting() NOW


by Danila Vershinin, April 9, 2018

Disable php error_reporting() function to secure your server from malware and bad coders pushing junk to it.

Read More...

CentOS 7, 8: ban bad IPs and networks with FirewallD


by Danila Vershinin, April 7, 2018

Now this is how you ban the bad guys from your server with the convenient Firewalld drop zone.

Read More...

Html.Exploit.CVE_2017_11793-6336854-1 FOUND. What is it?


by Danila Vershinin, October 14, 2017

Find out how to deal with Html.Exploit.CVE_2017_11793-6336854-1 and if you are affected

Read More...

Stop Google Analytics SPAM bots and reduce server load


by Danila Vershinin, September 17, 2017

Reduce server load easily by configuring nginx to discard unknown hostnames. Fight those Google Analytics spam bots!

Read More...