// Blog
Articles
Updates, new packages, and technical notes from deb.myguard.nl
TLS Configuration for NGINX and Angie: The Complete Guide to Getting A+ on SSL Labs
Learn how to configure TLS for maximum security and achieve a perfect A+++ rating on SSLLabs. A comprehensive guide covering cipher selection, certificates, and cryptographic best practices.
Google PageSpeed for NGINX: What It Was, Why It Died, and What to Use Instead
Google PageSpeed was the magic module that automatically made your website faster — until Google quietly walked away from it. Here’s the full story: what PageSpeed actually did, why it’s now effectively dead on NGINX and Angie, and what you should use instead.
NGINX and Angie on Kubernetes: Helm, Ingress, WAF, HTTP/3 and TLS Guide
If your team has finally pushed everything into Kubernetes and you are wondering how to put a sensible web server in front…
openssl-nginx: The Dedicated OpenSSL Built Just for NGINX and Angie
Your server’s system OpenSSL juggles SSH, apt, Python, and your web server all at once. openssl-nginx says no to that. Here’s the dedicated OpenSSL built exclusively for NGINX and Angie — faster handshakes, post-quantum crypto, kernel TLS offload, zero legacy bloat.
docker-cms: The PHP 8.5 Docker Image That Makes WordPress Admin Actually Fun
docker-cms is a PHP 8.5 Docker container loaded with WP-CLI, Composer, Xdebug, database clients, and every tool you need to maintain and debug WordPress — without touching your live server.
Nginx & Angie: The Expert Guide to Maximum Performance and Security
The complete guide to building and running an optimised Nginx or Angie server on Debian and Ubuntu — HTTP/3, TLS 1.3, brotli, ModSecurity WAF, FastCGI caching, and eight layers of WordPress defence. Every directive explained.
NGINX NJS: Write JavaScript Inside Your Web Server (Yes, Really)
NJS is NGINX’s built-in JavaScript engine — write real JavaScript that runs inside your web server at request time, with no Node.js, no external services, and microsecond latency.
NGINX Lua Module: Your Web Server Just Got a Superpower
The NGINX Lua module (ngx_http_lua) runs Lua/LuaJIT scripts inside NGINX worker processes — Redis rate limiting, JWT auth, LRU caching, dynamic routing, all without blocking a single request.
Hardening PHP with PHP-Snuffleupagus: Block SQL Injection, XSS and Dangerous Functions Inside PHP-FPM
Most WAFs sit outside PHP and can be tricked. PHP-Snuffleupagus lives inside the PHP interpreter itself — blocking dangerous functions, SQL injection, XSS, type juggling, and deserialization attacks where attackers can’t reach. This is what defence in depth actually looks like.
nginx-minimal: The Lean NGINX Build for WordPress, PHP, and Docker (2026)
nginx-minimal strips 12 unused static modules from NGINX while keeping HTTP/3, TLS 1.3, jemalloc, zlib-ng, and all 50+ dynamic modules. Smaller binary, smaller attack surface, same blazing speed. Perfect for WordPress, PHP-FPM, and Docker.
nginx-core, nginx-full, nginx-light Are Gone — Here’s What to Use Instead (2026)
Debian deprecated nginx-core, nginx-full, and nginx-light. Don’t panic — the replacements are actually better. Here’s what happened, why it’s good news, and exactly what to install instead.