Hardening & security

[Maxim Konovalov]

Hi,

On 07.05.2021 12:18, spaace wrote:
> Hi, 
> 
> We intend to deploy Nginx as a reverse proxy and want to be sure it is as
> secure as possible. 
> 
> Are there any recommended scanners to check whether the rules have any holes
> in them ?
>  eg acutenix? 
> 
> Which is the defacto hardening guide for securing Nginx rules apart from the
> CIS published ones? 
> 
I'd additionally take a look at Yandex's Gixy, nginx config scanner:

https://github.com/yandex/gixy

-- 
Maxim Konovalov