Skip to main content

NGINX NAXSI WAF: Complete Setup and Configuration Guide

by Danila Vershinin, February 6, 2026

Learn how to set up the NAXSI web application firewall for NGINX on Rocky Linux and RHEL. This guide covers installation, core rules, learning mode, whitelisting, libinjection integration, and production deployment of this lightweight WAF alternative to ModSecurity.

Read More...

NGINX LDAP Authentication: Complete Module Setup Guide

by Danila Vershinin, February 5, 2026

Learn how to set up NGINX LDAP authentication using the nginx-auth-ldap dynamic module. This guide covers installation from pre-built packages, Active Directory integration, LDAPS encryption, multi-server failover, authentication caching, and production security hardening.

Read More...

NGINX Reverse DNS Module: Hostname-Based Access Control

by Danila Vershinin, February 2, 2026

Learn how to use the NGINX reverse DNS module (ngx_http_rdns) to verify client hostnames, block malicious traffic, and authenticate legitimate crawlers like Googlebot. This guide covers installation, configuration, and security best practices.

Read More...

NGINX Secure Link: Signed URLs and Hotlink Protection

by Danila Vershinin, January 29, 2026

Learn how to implement NGINX secure link functionality for signed URLs and hotlink protection. This comprehensive guide covers the HMAC Secure Link module installation, configuration, and client-side token generation in PHP, Python, and Bash.

Read More...

NGINX Allow Deny: Complete IP Whitelist & Blacklist Guide

by Danila Vershinin, January 27, 2026

Master NGINX allow and deny directives to control access by IP address. This complete guide covers IP whitelisting, blacklisting, CIDR notation, the geo module for large IP lists, and common pitfalls with tested configurations.

Read More...

NGINX Basic Auth with htpasswd: Complete Configuration Guide

by Danila Vershinin, January 26, 2026

Learn how to configure NGINX basic authentication using htpasswd. This complete guide covers password file creation, hash algorithms, WordPress protection, staging site security, SSL integration, and troubleshooting.

Read More...

Linux setfacl Command: Complete Guide to ACL Permissions for Read-Only Users and Beyond

by Danila Vershinin, January 18, 2026

Learn how to use the Linux setfacl command to add read-only users to directories, configure recursive ACL permissions, and set default ACLs for new files. This comprehensive guide covers everything from basic syntax to advanced use cases for enterprise-grade access control.

Read More...