boobo94 / boobo94.github.io

My personal website.
https://whyboobo.com
MIT License
3 stars 1 forks source link

Devops resources #6

Closed boobo94 closed 3 years ago

boobo94 commented 3 years ago

Cloud Infrastructure

1. How to Optimize your AWS Cloud Architecture Costs - from freeCodeCamp

In this article, you'll discover highlights about what means optimizing your costs in AWS cloud architecture. Then I'll share how you can do it with respect to the AWS Well-Architected framework.

Docker containers

1. How To Secure a Containerized Node.js Application with Nginx, Let's Encrypt, and Docker Compose

In this tutorial, you will deploy a Node.js application with an Nginx reverse proxy using Docker Compose. You will obtain TLS/SSL certificates for the domain associated with your application and ensure that it receives a high-security rating from SSL Labs. Finally, you will set up a cron job to renew your certificates so that your domain remains secure.

Web server configurations

1. Common Nginx misconfigurations that leave your web server open to attack

Nginx is the web server powering one-third of all websites in the world. Detectify Crowdsource has detected some common Nginx misconfigurations that, if left unchecked, leave your web site vulnerable to attack. Here’s how to find some of the most common misconfigurations before an attacker exploits them.

2. NGINX rate-limiting in a nutshell

This post focuses on the ngx_http_limit_req_module, which provides you with the limit_req_zone and limit_req directives. It also provides the limit_req_status and limit_req_level. Together these allow you to control the HTTP response status code for rejected requests, and how these rejections are logged.

3. Rate Limiting with NGINX and NGINX Plus

One of the most useful, but often misunderstood and misconfigured, features of NGINX is rate limiting. It allows you to limit the amount of HTTP requests a user can make in a given period of time. A request can be as simple as a GET request for the homepage of a website or a POST request on a log‑in form.

Rate limiting can be used for security purposes, for example to slow down brute‑force password‑guessing attacks. It can help protect against DDoS attacks by limiting the incoming request rate to a value typical for real users, and (with logging) identify the targeted URLs. More generally, it is used to protect upstream application servers from being overwhelmed by too many user requests at the same time.

In this blog we will cover the basics of rate limiting with NGINX as well as more advanced configurations. Rate limiting works the same way in NGINX Plus.

4. Limit bandwidth and requests to your Nginx server with rate_limit and limit_req

There are many reasons for wanting to limit traffic. For my own personal use, the three most important factors are:

Limiting resource consumption (bandwidth, but also cpu and memory)
Protecting login pages from brute forcing
Learning how it works

Nginx allows for many strategies to limit traffic. I'll walk you through the way I've employed rate_limit and limit_req, starting with the latter.

boobo94 commented 3 years ago

https://www.freecodecamp.org/news/the-nginx-handbook/

https://www.freecodecamp.org/news/what-is-docker-used-for-a-docker-container-tutorial-for-beginners/