Gixy IDE Plugins: NGINX Security in VS Code and JetBrains
by Danila Vershinin, March 14, 2026
NGINX misconfigurations are among the most common sources of web application vulnerabilities. Server-Side Request Forgery (SSRF), HTTP response splitting, path traversal via alias, and header injection — these issues often slip through code review and only surface in production, sometimes after an attacker has already exploited them. Gixy IDE plugins bring automated detection of these […]
Read More...NGINX CDN Loop Detection: Prevent Request Loops
by Danila Vershinin,
Learn how to prevent infinite request loops in NGINX CDN and reverse proxy configurations using the loop detect module. This module implements RFC 8586’s CDN-Loop header to track request hops and automatically block runaway loops before they consume server resources.
Read More...NGINX ipscrub Module: Anonymize IP Addresses in Logs
by Danila Vershinin, March 9, 2026
Learn how to anonymize IP addresses in NGINX access logs using the ipscrub module. This privacy-focused module replaces real IPs with cryptographic hashes, helping you achieve GDPR compliance while retaining the ability to correlate requests from the same visitor.
Read More...NGINX HTML Sanitize Module: Strip Dangerous HTML at the Edge
by Danila Vershinin, March 7, 2026
Learn how to sanitize HTML content at the NGINX level using the ngx_http_html_sanitize_module. This module uses Google’s gumbo-parser for HTML5 parsing and katana-parser for CSS, allowing you to strip dangerous elements, attributes, and styles before they reach your application.
Read More...NGINX Execute Module: Run Shell Commands via HTTP
by Danila Vershinin, March 5, 2026
Learn how to safely install and configure the NGINX execute module for running shell commands via HTTP requests. This guide covers security hardening with IP restrictions, practical use cases for system monitoring, and critical warnings about exposing command execution on production servers.
Read More...NGINX Encrypted Session Module: AES-256 Variable Encryption
by Danila Vershinin,
Learn how to encrypt and decrypt NGINX variable values using the encrypted session module. This guide covers AES-256-CBC encryption for secure cookies, time-limited tokens, and session management directly in NGINX configuration.
Read More...NGINX Dynamic Limit Req Module: Redis-Backed Rate Limiting
by Danila Vershinin, March 4, 2026
Learn how to protect your NGINX server from DDoS attacks and brute force abuse using the dynamic limit req module. This Redis-backed rate limiter dynamically blocks offending IPs with configurable lockout periods, whitelisting, and multi-zone policies.
Read More...NGINX Delay Module: Slow Down Attackers Easily
by Danila Vershinin,
The NGINX delay module adds artificial request delays to slow down brute force attacks, scanner bots, and other malicious traffic — without blocking worker processes. Learn how to install and configure it for security hardening on RHEL, CentOS, AlmaLinux, Rocky Linux, Debian, and Ubuntu.
Read More...NGINX WebDAV Module: Full File Sharing Server Setup
by Danila Vershinin, March 3, 2026
Learn how to build a full-featured WebDAV file server with NGINX using the dav-ext module. This guide covers installation, PROPFIND, OPTIONS, LOCK, and UNLOCK configuration, SELinux setup, and security hardening for production deployments.
Read More...NGINX Cookie Limit Module: Rate Limiting Guide
by Danila Vershinin,
Learn how to protect your NGINX server from cookie-based attacks using the ngx_cookie_limit_req_module. This Redis-backed module combines cookie rate limiting with forged cookie detection to block malicious IPs that generate excessive unique cookies.
Read More...Recommended Web Hosting
