Nginx TLS TCP Proxy server for tcp upstream servers What is SSL Termination SSL/TLS termination means that NGINX acts as the server-side SSL/TLS endpoint for connections with clients: it performs the decryption of requests and encryption of responses that backend servers would otherwise have to do. The operation is called termination because NGINX closes the client connection and forwards the client data over a newly created, unencrypted connection to the servers in an upstream tcp servers. In release R6 and later, NGINX performs SSL/TLS termination for TCP connections as well as HTTP connections. Web Servers Security
Nginx Location Priority Manual The location directive within NGINX server block allows to route request to correct location within the file system. The directive is used to tell NGINX where to look for a resource by including files and folders while matching a location block against an URL. In this tutorial, we will look at NGINX location directives in details. Linux Networking Web Servers
Certbot - Let's Encrypt certificates on Debian server with Apache webserver How install and use certbot on Debian system, examples how create Let's Encrypt certificates for multiple domains, how handling certbot automatic renewal. It covers a apache2 webserver configuration for using cerbot generated certificates. Setup is made for Debian and debian based linux distributions Linux Debian Security Web Servers
Certbot and Let’s Encrypt CA What is Certbot, cerbots commands and user guide, what is Let's Encrypt Rate Limits. How works cerbot authenticators and installers, certbot commands exmaples Linux Security Web Servers
OCSP Stapling on Nginx and Apache webserver To understand OCSP stapling, it is necessary to understand OCSP, the Online Certificate Status Protocol. OCSP is a protocol for determining whether a certificate is revoked (for instance, becau se its private key was compromised). Every time a browser connects to an HTTPS website, it contacts the OCSP responder specified in the SSL certificate, and asks if the certificate is revoked. If the respond er replies that the certificate is revoked, the browser blocks the page from loading. Web Servers Networking Security
Most secure SSL/TLS configuration for Apache, Nginx, Postfix, Dovecot, HAProxy and other What is a cipher suite? Cipher suites decide how secure, compatible and fast your HTTPS website is. A cipher suite is a set of information that helps determine how your web server will communicate secure data over HTTPS. A web server uses certain protocols and algorithms to determine how it will secure your web traffic. These are the ingredients of a secure connection. A cipher suite is essentially a list of those ingredients. Security Linux Networking Web Servers
Rewrite uri to lowercase in nginx and apache webserver We want make our uri case insensitive. What it is? When I call uri like https://mybluelinux.com/INdex.html, so such uri will be first rewrite to all lowercase chars like https://mybluelinux.com/index.html. Debian Linux Networking Web Servers