debian - Security Blog

debian

A collection of 2 posts

Install NGINX with ModSecurity on Debian 11 (Bullseye)

Install NGINX with ModSecurity on Debian 11 (Bullseye)

Recently I decided to switch from NAXSI Web Application Firewall to ModSecurity. Not that I was unhappy with NAXSI - in opposite - everything went smooth. But NAXSI receives little support from the open source community. So I decided to go with the quasi standard. With this blog post I

Securing your WebApp with NGINX and NAXSI on Debian 10 (buster)

Securing your WebApp with NGINX and NAXSI on Debian 10 (buster)

This website is running the free version of Ghost CMS [https://ghost.org/]. To increase the security of the website a NGINX reverse proxy including NAXSI web application firewall (WAF) is used. NAXSI (NGINX Anti XSS & SQL Injection) is a free, third-party NGINX module which complements the webserver with