NGINX Encrypted Session Module: AES-256 Variable Encryption
by Danila Vershinin, March 5, 2026
Learn how to encrypt and decrypt NGINX variable values using the encrypted session module. This guide covers AES-256-CBC encryption for secure cookies, time-limited tokens, and session management directly in NGINX configuration.
Read More...NGINX Cookie Limit Module: Rate Limiting Guide
by Danila Vershinin, March 3, 2026
Learn how to protect your NGINX server from cookie-based attacks using the ngx_cookie_limit_req_module. This Redis-backed module combines cookie rate limiting with forged cookie detection to block malicious IPs that generate excessive unique cookies.
Read More...NGINX Cookie Flag Module: Set HttpOnly, Secure, and SameSite
by Danila Vershinin, February 6, 2026
Learn how to enforce HttpOnly, Secure, and SameSite cookie flags in NGINX using the cookie flag module. Step-by-step installation, configuration examples, and security best practices for protecting session cookies at the reverse proxy layer.
Read More...NGINX JavaScript Challenge: Stop Bots Without CAPTCHAs
by Danila Vershinin,
Learn how to protect your NGINX server from bots and DDoS attacks using the JavaScript challenge module. This lightweight proof-of-work solution filters automated traffic without CAPTCHAs, preserving user experience while blocking scripts that cannot execute JavaScript.
Read More...NGINX Sticky Sessions: Cookie-Based Load Balancing
by Danila Vershinin, January 29, 2026
Learn how to implement NGINX sticky sessions with cookie-based load balancing. This comprehensive guide covers installation, configuration, security best practices, and troubleshooting for Rocky Linux, AlmaLinux, and RHEL systems.
Read More...Varnish – cache on cookies
by Danila Vershinin, May 30, 2017
Cache those logged in pages with Varnish!
Read More...Recommended Web Hosting
