// Blog
Updates, new packages, and technical notes from deb.myguard.nl
WordPress NGINX Configuration: PHP-FPM Tuning, FastCGI Cache and Redis (2026 Guide)
The complete WordPress + NGINX + PHP-FPM setup for Debian and Ubuntu: server block config, pool tuning, FastCGI caching for anonymous traffic, Redis object cache, Brotli compression, and security hardening with ModSecurity and Snuffleupagus.
nginx 1.31.0
NGINX load balancing distributes traffic across multiple backends with automatic failover. This guide covers all five load balancing algorithms, passive health checks, keepalive connection pooling, backup servers, and TCP/UDP load balancing.
NGINX Reverse Proxy Configuration: The Complete Setup Guide
A reverse proxy puts NGINX in front of your Node.js, Python, or PHP backend — handling SSL termination, caching, buffering, and security. This guide covers proxy_pass, upstream keepalive, caching, WebSocket proxying, and security headers.
NGINX Rate Limiting: Protect Your Server from Bots, Scrapers and Brute Force
NGINX rate limiting with limit_req_zone stops credential stuffing, scrapers, and DDoS floods before they reach your application. This guide covers burst handling, per-endpoint limits, IP whitelisting, WordPress-specific config, and Redis-backed cross-server limiting.
NGINX Brotli Compression: Install, Configure and Pre-Compress Static Assets
Brotli achieves 15-26% better compression than gzip on HTML, CSS, and JavaScript. This guide covers installing the NGINX Brotli module, configuring on-the-fly compression, pre-compressing static assets at level 11, and running Brotli alongside gzip.
NGINX on Debian 13 Trixie: What Changed and How to Upgrade
Debian 13 Trixie brings GCC 14, OpenSSL 3.3, PHP 8.4, systemd 256, and a newer Linux kernel. Here is what each change means for your NGINX and Angie setup, with a complete upgrade checklist.
nginx 1.29.8
Version 1.29.8 — 2026-05-12 Changes Full rebuild and backport with latest Mainline Merged with the source package from Debian Trixie in november…
PHP Snuffleupagus Tutorial: Harden PHP-FPM Against Injection, XSS and Dangerous Functions
PHP-Snuffleupagus blocks dangerous functions, eval(), remote file inclusion and cookie theft inside the PHP interpreter itself — where a WAF can’t reach. Full installation, WordPress-specific rules, per-pool config, and production tuning guide.
Postfix + Dovecot Mail Server Setup on Debian 12 and 13 (2026 Guide)
A complete Postfix + Dovecot + Rspamd mail server on Debian 12 and 13 — with TLS, DKIM, SPF, DMARC, spam filtering, virtual mailboxes, security hardening, and a 10/10 score on mail-tester.com. No shortcuts.