NGINX TLS 1.3 Hardening: A+ SSL Configuration Guide
by Danila Vershinin, January 21, 2026
Learn how to configure NGINX for maximum TLS security with TLS 1.3, achieve an A+ SSL Labs rating, and use tools like Gixy for automated security validation. Complete guide with tested configurations for RHEL 9, Rocky Linux, and AlmaLinux.
Read More...Using the OWASP Core Rule Set with the NGINX Security Module
by Danila Vershinin, January 18, 2026
Learn how to install and configure the OWASP Core Rule Set (CRS) with NGINX ModSecurity on Rocky Linux, AlmaLinux, and RHEL 9. Protect your web applications from SQL injection, XSS, remote code execution, and other OWASP Top 10 attacks with this comprehensive WAF configuration guide.
Read More...How to install the ModSecurity NGINX module in Rocky Linux/AlmaLinux/RHEL 9
by Danila Vershinin, January 25, 2025
Here’s how to easily install ModSecurity for NGINX in Rocky Linux/AlmaLinux/RHEL 9
Read More...Protecting from the Host header vulnerability injection in NGINX
by Danila Vershinin, April 6, 2024
Discover 2 essential strategies for protecting your NGINX web applications from the Host header vulnerability injections. Learn how to secure your infrastructure against cache poisoning and other attacks related to the Host header injection.
Read More...WordPress Security Checklist
by Danila Vershinin, September 7, 2022
Secure your WordPress installation with this security checklist from changing wp-content URLs to a secure NGINX configuration
Read More...Performance-friendly way of blocking Referrer spam
by Danila Vershinin, August 27, 2022
Protecting your NGINX website from Referrer spam SPAM using efficient performance-friendly maps
Read More...How to install NGINX WAF module in Fedora Linux
by Danila Vershinin, February 19, 2022
How to easily set up WAF module protecting your NGINX powered websites in Fedora Linux. Install prebuilt NGINX WAF module.
Read More...Whitelist IP addresses for Magento 2 admin protection
by Danila Vershinin, May 8, 2021
Protect Magento 2 admin area using NGINX IP address whitelisting approach. Secure your Magento 2 administration
Read More...Best practice secure WordPress NGINX configuration for Plesk
by Danila Vershinin, September 18, 2020
WordPress Security WordPress is the most popular CMS for running a website. As such, it is the target for all kinds of malicious bots. The most effective way of reducing security risks associated with WordPress is the proper server configuration. Secure WordPress NGINX configuration must be built on the assumption that any unknown script is […]
Read More...Recommended Web Hosting
