Nginx Security Hardening and Rules

mex nginx-forum at
Mon Oct 20 18:13:43 UTC 2014

for scanners/indexes of public services your might search for "shodan"

for the valid use of security trhough obscurity: 

"My thoughts on this are that obscuring information is helpful to security
in many cases as it can force an attacker to generate more "noise" which can
be detected.

Where obscurity is a "bad thing" can be where the defender is relying on
that obscurity as a critical control, and without that obscurity, the
control fails.

So in addition to the one you gave above. An effective use of obscurity
could be removing software name and version information from Internet facing

src: Rоry McCune /

Posted at Nginx Forum:,254125,254177#msg-254177

More information about the nginx mailing list