NGINX Auth Hash Module: Secure URL Authentication
by Danila Vershinin, February 26, 2026
Learn how to protect files and content with the NGINX auth hash module. This module brings SHA-256, SHA-512, BLAKE2, and other modern hash algorithms to NGINX secure URL authentication, replacing the MD5-only limitation of the built-in secure_link module.
Read More...NGINX Access Control Module: Variable-Based Rules
by Danila Vershinin, February 25, 2026
The NGINX access control module extends native allow/deny directives beyond IP addresses to any NGINX variable. Build flexible access policies using headers, query parameters, geo data, and custom maps — all evaluated at the access phase without resorting to if-statements.
Read More...NGINX PTA Module: Time-Limited Token Authentication
by Danila Vershinin, February 16, 2026
Learn how to protect NGINX content with time-limited encrypted tokens using the PTA (Period of Time Authentication) module. Prevent hotlinking and enable secure, expiring download links with AES-128 encryption.
Read More...NGINX Honeypot 3.0: Advanced IP Blocking with nftables
by Danila Vershinin, February 15, 2026
NGINX Honeypot 3.0 introduces the ngx_nftset_access module – a complete rewrite using modern nftables instead of legacy ipset. Auto-ban attackers, rate-limit abusers, and challenge bots with proof-of-work puzzles, all from within NGINX.
Read More...NGINX Digest Authentication: More Secure Than Basic Auth
by Danila Vershinin, February 7, 2026
Learn how to configure NGINX digest authentication using the ngx_http_auth_digest module. This guide covers installation, htdigest password files, brute-force protection, shared memory tuning, and when to choose digest auth over basic auth for securing your NGINX locations.
Read More...NGINX JavaScript Challenge: Stop Bots Without CAPTCHAs
by Danila Vershinin, February 6, 2026
Learn how to protect your NGINX server from bots and DDoS attacks using the JavaScript challenge module. This lightweight proof-of-work solution filters automated traffic without CAPTCHAs, preserving user experience while blocking scripts that cannot execute JavaScript.
Read More...NGINX NAXSI WAF: Complete Setup and Configuration Guide
by Danila Vershinin,
Learn how to set up the NAXSI web application firewall for NGINX on Rocky Linux and RHEL. This guide covers installation, core rules, learning mode, whitelisting, libinjection integration, and production deployment of this lightweight WAF alternative to ModSecurity.
Read More...NGINX LDAP Authentication: Complete Module Setup Guide
by Danila Vershinin, February 5, 2026
Learn how to set up NGINX LDAP authentication using the nginx-auth-ldap dynamic module. This guide covers installation from pre-built packages, Active Directory integration, LDAPS encryption, multi-server failover, authentication caching, and production security hardening.
Read More...NGINX Reverse DNS Module: Hostname-Based Access Control
by Danila Vershinin, February 2, 2026
Learn how to use the NGINX reverse DNS module (ngx_http_rdns) to verify client hostnames, block malicious traffic, and authenticate legitimate crawlers like Googlebot. This guide covers installation, configuration, and security best practices.
Read More...NGINX Secure Link: Signed URLs and Hotlink Protection
by Danila Vershinin, January 29, 2026
Learn how to implement NGINX secure link functionality for signed URLs and hotlink protection. This comprehensive guide covers the HMAC Secure Link module installation, configuration, and client-side token generation in PHP, Python, and Bash.
Read More...Recommended Web Hosting
