NGINX WAF Module: Lightweight Web Application Firewall
by Danila Vershinin, April 3, 2026
Install and configure the ngx_waf module to protect NGINX against SQL injection, XSS, malicious bots, and CC attacks. Includes IP blacklists, regex rules, rate limiting, an advanced rule DSL, and an Under Attack challenge mode.
Read More...NGINX TeslaGov JWT Module: Claim Forwarding
by Danila Vershinin, March 28, 2026
Learn how to authenticate API requests and forward JWT claims to backend services using the NGINX TeslaGov JWT module. Covers installation, HMAC and RSA key configuration, cookie-based auth for SPAs, login redirects, and claim extraction to request, response, and NGINX variables.
Read More...NGINX Kerberos Authentication: Enterprise SSO with SPNEGO
by Danila Vershinin, March 23, 2026
Learn how to configure NGINX Kerberos authentication with the SPNEGO module for transparent Single Sign-On in Active Directory environments. Complete guide covering installation, keytab setup, principal authorization, credential delegation, and security best practices.
Read More...NGINX Shibboleth Module: SSO Authentication Guide
by Danila Vershinin, March 22, 2026
Learn how to integrate NGINX with Shibboleth SSO using the nginx-http-shibboleth module. This guide covers installation, configuration of the FastCGI authorizer, secure attribute passing to backend applications, and critical anti-spoofing measures for production deployments.
Read More...NGINX Secure Token Module: CDN Token Authentication
by Danila Vershinin, March 21, 2026
Learn how to protect HLS, DASH, and HDS streaming content with the NGINX secure token module. Generate CDN-compatible tokens for Akamai, CloudFront, and other providers directly at the edge, with configuration examples and security best practices.
Read More...NGINX Redis Rate Limit Module: Distributed Throttling
by Danila Vershinin, March 19, 2026
Learn how to implement distributed rate limiting in NGINX using the Redis Rate Limit module. This module uses the Generic Cell Rate Algorithm (GCRA) with Redis as a backend, providing precise request throttling across multiple NGINX instances for API protection, login abuse prevention, and DDoS mitigation.
Read More...NGINX Dynamic Limit Req Module: Redis-Backed Rate Limiting
by Danila Vershinin, March 4, 2026
Learn how to protect your NGINX server from DDoS attacks and brute force abuse using the dynamic limit req module. This Redis-backed rate limiter dynamically blocks offending IPs with configurable lockout periods, whitelisting, and multi-zone policies.
Read More...NGINX Delay Module: Slow Down Attackers Easily
by Danila Vershinin,
The NGINX delay module adds artificial request delays to slow down brute force attacks, scanner bots, and other malicious traffic — without blocking worker processes. Learn how to install and configure it for security hardening on RHEL, CentOS, AlmaLinux, Rocky Linux, Debian, and Ubuntu.
Read More...NGINX Cookie Limit Module: Rate Limiting Guide
by Danila Vershinin, March 3, 2026
Learn how to protect your NGINX server from cookie-based attacks using the ngx_cookie_limit_req_module. This Redis-backed module combines cookie rate limiting with forged cookie detection to block malicious IPs that generate excessive unique cookies.
Read More...NGINX Captcha Module: Server-Side CAPTCHA Guide
by Danila Vershinin, February 28, 2026
Learn how to generate and validate CAPTCHA images directly in NGINX without relying on external services like reCAPTCHA. The NGINX captcha module creates server-side CAPTCHA challenges using the GD graphics library, keeping your authentication flows fast, private, and dependency-free.
Read More...Recommended Web Hosting
