NGINX NAXSI WAF: Complete Setup and Configuration Guide
by Danila Vershinin, February 6, 2026
Learn how to set up the NAXSI web application firewall for NGINX on Rocky Linux and RHEL. This guide covers installation, core rules, learning mode, whitelisting, libinjection integration, and production deployment of this lightweight WAF alternative to ModSecurity.
Read More...NGINX LDAP Authentication: Complete Module Setup Guide
by Danila Vershinin, February 5, 2026
Learn how to set up NGINX LDAP authentication using the nginx-auth-ldap dynamic module. This guide covers installation from pre-built packages, Active Directory integration, LDAPS encryption, multi-server failover, authentication caching, and production security hardening.
Read More...NGINX TOTP Authentication: Add 2FA to Your Server
by Danila Vershinin, February 4, 2026
Learn how to add time-based one-time password (TOTP) two-factor authentication to NGINX protected locations. This guide covers installation, configuration, and security best practices for the ngx_http_auth_totp module.
Read More...NGINX JWT Authentication Module: Secure Your APIs
by Danila Vershinin, February 2, 2026
Learn how to implement native JWT authentication directly in NGINX using the nginx-module-jwt. This lightweight module validates JSON Web Tokens at the edge, reducing backend load and simplifying your API security architecture.
Read More...NGINX Length Hiding Module: Does It Actually Prevent BREACH Attacks?
by Danila Vershinin,
The NGINX length hiding module is often recommended for BREACH attack mitigation, but security research shows it only slows down attacks, not prevents them. Learn what actually protects against BREACH: SameSite cookies, CSRF token rotation, and proper application architecture.
Read More...NGINX Reverse DNS Module: Hostname-Based Access Control
by Danila Vershinin,
Learn how to use the NGINX reverse DNS module (ngx_http_rdns) to verify client hostnames, block malicious traffic, and authenticate legitimate crawlers like Googlebot. This guide covers installation, configuration, and security best practices.
Read More...NGINX Bot Verification: Block Fake Crawlers
by Danila Vershinin, January 31, 2026
Learn how to verify and block fake search engine bots in NGINX using the bot-verifier module. This comprehensive guide covers installation, configuration, and testing of reverse DNS verification for Googlebot, Bingbot, and other crawlers.
Read More...NGINX Bot Protection Without CAPTCHA: Testcookie Guide
by Danila Vershinin, January 30, 2026
Learn how to implement NGINX bot protection using the testcookie module. This JavaScript-based challenge blocks automated traffic without frustrating legitimate users with CAPTCHAs.
Read More...NGINX Secure Link: Signed URLs and Hotlink Protection
by Danila Vershinin, January 29, 2026
Learn how to implement NGINX secure link functionality for signed URLs and hotlink protection. This comprehensive guide covers the HMAC Secure Link module installation, configuration, and client-side token generation in PHP, Python, and Bash.
Read More...NGINX Allow Deny: Complete IP Whitelist & Blacklist Guide
by Danila Vershinin, January 27, 2026
Master NGINX allow and deny directives to control access by IP address. This complete guide covers IP whitelisting, blacklisting, CIDR notation, the geo module for large IP lists, and common pitfalls with tested configurations.
Read More...Recommended Web Hosting
