Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
T
T
teen2017-04-02 22:46:57
Nginx
teen, 2017-04-02 22:46:57

How do you secure your nginx sites?

I would like to hear opinions on how to protect your sites from unwanted attacks, shell uploads, and more.
There is a server on CentOS 7 running Nginx, php7.1, MariaDB (I use adminer ).
Engines will be used such as bitrix, wp, modx and php frameworks are different.
I'm more interested in writing secure nginx configs.
Thank you.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
S
Sergey Sokolov, 2017-04-02
@MSkitalec

Opinion: send traffic through CloudFlare - they can filter some of the threats.
Other threats and security holes exist at the level of PHP and engines and are almost not filtered by the web server. You can analyze the logs for typical patterns, say, fail2ban 'om.

Report
D
Dimonchik, 2017-04-02
@dimonchik2013

https://github.com/nbs-system/naxsi

Report
N
Nikolai Kovalev, 2017-04-06
@nkmail

https://configserver.com/cp/csf.html

Similar questions
J
justdance2014-02-11 12:44:00
How to configure nginx engine (rewrite rule) under Symfony2? 1Reply
S
shur1k2014-02-11 22:28:45
Why is captcha not working in nginx? 2Reply
V
vlog2021-11-27 15:28:19
Certbot: Site stopped loading after installing ssl, browser returns ERR_CONNECTION_TIMED_OUT. How to fix? 2Reply
S
Sergey Pugovkin2016-04-22 20:15:45
There is a server error 502 when writing to the sqlite3 database on php 7 fpm, but nothing in the php logs. Why nothing? 1Reply
B
bahek24627742014-02-17 11:26:49
How to change nginx username? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question