NGINX basics. How to create redirects


by Danila Vershinin, July 14, 2020

Understanding redirects in NGINX. How to create efficient redirection rules in NGINX configuration

Read More...

NGINX and PHP-FPM. What my permissions should be?


by Danila Vershinin, July 13, 2020

Proper file permissions and ownership model for NGINX / PHP-FPM powered websites. The secure chmod and shown setup

Read More...

NGINX Security Headers, the right way


by Danila Vershinin, May 31, 2020

How to add NGINX security headers without configuration pitfalls and in a consistent way that will make your website safe for visitors

Read More...

Install NGINX RTMP module in CentOS/RHEL or Amazon Linux


by Danila Vershinin, April 22, 2020

How to install and enable NGINX RTMP module in CentOS/RHEL or Amazon Linux. Quick instructions to empower your NGINX with streaming capabilities

Read More...

How to install Brotli NGINX module in Plesk for CentOS/RHEL 7 or 8


by Danila Vershinin, March 28, 2020

How to enable Brotli compression in Plesk for CentOS 7

Read More...

How to install the ModSecurity NGINX module in CentOS/RHEL 8


by Danila Vershinin, February 20, 2020

Here’s how to easily install ModSecurity for NGINX in CentOS/RHEL 8.

Read More...

NGINX: try_files is evil too


by Danila Vershinin, February 18, 2020

The if directive in NGINX is evil. How about try_files?

Read More...

Protect your signup forms from SPAM with NGINX and CleanTalk


by Danila Vershinin, September 6, 2019

Suppose you’re running Mautic on CentOS 7 machine. You’ve created a signup form and placed it on the front page of your website. The form is very simple: an input for an email address and Subscribe button. Bots are hitting it hard. They submit email addresses to your form, your database of subscribers have lots […]

Read More...

NGINX and phpMyAdmin. When you have to…


by Danila Vershinin, August 18, 2019

The phpMyAdmin is the famous web client for MySQL databases. However, being an open-source product, it is subject to security vulnerabilities. The best thing is not using it at all. All the modern MySQL GUI clients support connecting via SSH tunneling. So you don’t have to open MYSQL port for outside. Neither you expose the […]

Read More...

NGINX vs PHP-FPM: No input file specified


by Danila Vershinin, June 16, 2019

NGINX vs PHP-FPM: No input file specified. Or how to deal with 404s of missing PHP scripts

Read More...