https://elijahu.me/portfolio/tags/nginx/Infrastructure & Cloud Engineering portfolio by Elijah Udom (elijahu) — AWS, Kubernetes, eBPF Security, AI/ML Infrastructure, and Platform Engineering projects.Hugo -- gohugo.ioenSat, 03 May 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/hardened-web-server/Sat, 03 May 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/hardened-web-server/“Default configs aren’t secure. They’re defaults — built for compatibility, not production. Running SSL Labs against a stock Nginx install and getting a B or F isn’t a surprise. It’s the expected result.” This is a full hardening walkthrough for a LEMP stack on Ubuntu 22.04 — Nginx TLS configuration, PHP-FPM lockdown, MySQL least-privilege setup, firewall, Fail2Ban, and what the actual path to A+ on SSL Labs looks like. Not the happy path.https://elijahu.me/portfolio/projects/gitea-ec2-guide/Sun, 23 Feb 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/gitea-ec2-guide/“GitHub is fine until you’re rate-limited at 11 PM pushing a large repo before a deadline. That’s when you decide to build your own.” This is a full breakdown of running Gitea on AWS EC2 — not a happy-path tutorial, but the actual build including every error I hit and how I resolved it. Architecture, configuration, the 502 debugging session, backup automation, and what three months of running this in production looks like.https://elijahu.me/portfolio/projects/nginx/Tue, 28 Jan 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/nginx/“403 errors on a freshly configured Nginx server are almost never about the file. They’re about the path to the file.” This is a configuration and troubleshooting reference for running Nginx on Ubuntu 22.04 on AWS EC2 — covering the full setup, the security group configuration that catches people out, and the complete 403 debugging chain. Written from a real configuration session where the permission issues took longer than they should have.