NGINX Dynamic Limit Req Module: Redis-Backed Rate Limiting
by Danila Vershinin, March 4, 2026
Learn how to protect your NGINX server from DDoS attacks and brute force abuse using the dynamic limit req module. This Redis-backed rate limiter dynamically blocks offending IPs with configurable lockout periods, whitelisting, and multi-zone policies.
Read More...NGINX Delay Module: Slow Down Attackers Easily
by Danila Vershinin,
The NGINX delay module adds artificial request delays to slow down brute force attacks, scanner bots, and other malicious traffic — without blocking worker processes. Learn how to install and configure it for security hardening on RHEL, CentOS, AlmaLinux, Rocky Linux, Debian, and Ubuntu.
Read More...NGINX Cookie Limit Module: Rate Limiting Guide
by Danila Vershinin, March 3, 2026
Learn how to protect your NGINX server from cookie-based attacks using the ngx_cookie_limit_req_module. This Redis-backed module combines cookie rate limiting with forged cookie detection to block malicious IPs that generate excessive unique cookies.
Read More...NGINX Captcha Module: Server-Side CAPTCHA Guide
by Danila Vershinin, February 28, 2026
Learn how to generate and validate CAPTCHA images directly in NGINX without relying on external services like reCAPTCHA. The NGINX captcha module creates server-side CAPTCHA challenges using the GD graphics library, keeping your authentication flows fast, private, and dependency-free.
Read More...NGINX Auth Hash Module: Secure URL Authentication
by Danila Vershinin, February 26, 2026
Learn how to protect files and content with the NGINX auth hash module. This module brings SHA-256, SHA-512, BLAKE2, and other modern hash algorithms to NGINX secure URL authentication, replacing the MD5-only limitation of the built-in secure_link module.
Read More...NGINX Access Control Module: Variable-Based Rules
by Danila Vershinin, February 25, 2026
The NGINX access control module extends native allow/deny directives beyond IP addresses to any NGINX variable. Build flexible access policies using headers, query parameters, geo data, and custom maps — all evaluated at the access phase without resorting to if-statements.
Read More...NGINX PTA Module: Time-Limited Token Authentication
by Danila Vershinin, February 16, 2026
Learn how to protect NGINX content with time-limited encrypted tokens using the PTA (Period of Time Authentication) module. Prevent hotlinking and enable secure, expiring download links with AES-128 encryption.
Read More...NGINX Honeypot 3.0: Advanced IP Blocking with nftables
by Danila Vershinin, February 15, 2026
NGINX Honeypot 3.0 introduces the ngx_nftset_access module – a complete rewrite using modern nftables instead of legacy ipset. Auto-ban attackers, rate-limit abusers, and challenge bots with proof-of-work puzzles, all from within NGINX.
Read More...NGINX Digest Authentication: More Secure Than Basic Auth
by Danila Vershinin, February 7, 2026
Learn how to configure NGINX digest authentication using the ngx_http_auth_digest module. This guide covers installation, htdigest password files, brute-force protection, shared memory tuning, and when to choose digest auth over basic auth for securing your NGINX locations.
Read More...NGINX JavaScript Challenge: Stop Bots Without CAPTCHAs
by Danila Vershinin, February 6, 2026
Learn how to protect your NGINX server from bots and DDoS attacks using the JavaScript challenge module. This lightweight proof-of-work solution filters automated traffic without CAPTCHAs, preserving user experience while blocking scripts that cannot execute JavaScript.
Read More...Recommended Web Hosting
