OpenCourser brand icon
Sign in
We may earn an affiliate commission when you visit our partners.
Course image
Udemy logo

The Perfect Nginx Server - Ubuntu (24.04) Edition

4.8 Filled star Filled star Filled star Filled star Half star
Based on 73 ratings
see reviews
Andrew Eaton

Welcome to The Perfect Nginx Server course, based on the latest Ubuntu Server Long Term Support release (24.04).

This beginner-friendly course assumes no prior experience with Linux server configuration, system administration or Nginx. Whether you’re new to Linux or managing servers, this course will teach you from the ground up.

New to Linux or server administration? Included in the course, is an absolute beginners "crash" Linux course. This 1.5 hour "course within a course" will teach you the commands, terminology and procedures as it relates to this course.

Read more

Welcome to The Perfect Nginx Server course, based on the latest Ubuntu Server Long Term Support release (24.04).

This beginner-friendly course assumes no prior experience with Linux server configuration, system administration or Nginx. Whether you’re new to Linux or managing servers, this course will teach you from the ground up.

New to Linux or server administration? Included in the course, is an absolute beginners "crash" Linux course. This 1.5 hour "course within a course" will teach you the commands, terminology and procedures as it relates to this course.

Nginx is one of the most popular and powerful web servers in the world, known for its speed and performance. In this course, we start with a blank server and gradually build it up to a fully optimized Nginx server capable of hosting multiple hardened WordPress sites on a VPS or dedicated server.

What You Will Learn:

  • How to configure and secure your server without relying on hosting provider support—you'll become your own system administrator.

  • From initial setup to optimization, this course covers the entire process of configuring an Ubuntu-based Nginx server.

You’ll learn to:

  • Optimize and Harden Your Server: Implement SSH Key authentication, set up firewalls (UFW and cloud firewalls), and protect your server from brute force attacks. 

  • Tuning the Server: Optimize the network layer, adjust swap and shared memory, fine-tune Nginx and MariaDB settings, and control file access and limits. 

  • Hardening Nginx, MariaDB, and PHP 8.3: Spend almost 2 hours configuring these core services to be both optimized and secure, preparing your server for real-world challenges. 

  • Deploy Hardened WordPress Sites: Install, harden, and optimize WordPress sites, going beyond superficial security plugins. Learn to secure your files, protect sensitive areas, and stop hotlinking, DDoS attacks, and more.

New 24.04 Course Additions Based on Student Requests:

  • PHPPools: Efficiently manage multiple PHP pools for various WordPress sites. 

  • OpenBaseDir: Secure PHP by limiting file access to specific directories. 

  • DisallowFileMods: Prevent unauthorized modifications to WordPress core files and plugins. 

  • Database Privileges: Fine-tune database user privileges for enhanced security. 

  • Free Wildcard SSL Certificates: Installation, A+ rating configuration and automatic renewal

Throughout the course, we’ll follow the key principle of only installing what’s necessary, then harden and optimize that component for security and performance. Security is paramount, every step you take will be focused on protecting your server and WordPress sites.

This course has real world application, you’ll gain hands-on experience setting up a secure hosting environment on a VPS or dedicated server, not on a local virtual machine. You'll learn to monitor server logs and observe how your configurations fend off bots and malicious users.

By the end of This course, you will be able to:

  • Host multiple fast, secure WordPress sites on your own server 

  • Add a new income stream by offering site hosting, optimization, SSL certificate management, and more to clients

  • Confidently manage your server without relying on external support 

  • Gain practical, real-world experience applicable to any server environment 

  • Designed for anyone eager to take control of their hosting, this course empowers you to step into the role of a systems administrator. By the end, you’ll be ready to manage your own WordPress sites on Nginx, using the latest Ubuntu release.

Sign up today and begin your journey to mastering server management.

Enroll now

What's inside

Learning objectives

  • Setup, from scratch, a hardened and optimized vps or dedicated server
  • Configure a hardened and optimized hosting environment using nginx, mariadb and php8.3
  • Harden wordpress the correct way - installing a security plugin doesn't harden wordpress
  • Optimize wordpress from the server side - learn how to configure server-side caching, which is far superior to any caching plugin
  • Learn how to keep your server secure and your wordpress sites hardened from attack by implementing the hardening steps covered in this course

Syllabus

Welcome to the "24.04 Edition of The Perfect Nginx Server"

In this section we are going to look at various introductory topics that relate to this course. It's important that you complete this section of the course as I cover some important topics and how they relate to the course.

Read more

In this lecture I'm going to introduce you to the essential Linux skills you need to complete this course successfully.

This is the new 2024 Linux Essential Skills mini - crash - course that I include with all my courses.

If you are new to Linux, it's very important that you take your time and work your way through this lecture. You must use this section to familiarize yourself with the commands and the various aspects of Linux in relation to this course. All of the topics are important, don't skip any of the topics in this lecture.

If you are familiar with Linux and have used the command line to before, then please feel free to skip this lecture.

This is the first Essential Skills Lecture

In this lecture I'm going to introduce you to the essential Linux skills you need to complete this course successfully.

This is the new 2024 Linux Essential Skills mini - crash - course that I include with all my courses.

If you are new to Linux, it's very important that you take your time and work your way through this lecture. You must use this section to familiarize yourself with the commands and the various aspects of Linux in relation to this course. All of the topics are important, don't skip any of the topics in this lecture.

If you are familiar with Linux and have used the command line to before, then please feel free to skip this lecture.

This is the second Essential Skills Lecture

In this lecture I'm going to introduce you to the essential Linux skills you need to complete this course successfully.

This is the new 2024 Linux Essential Skills mini - crash - course that I include with all my courses.

If you are new to Linux, it's very important that you take your time and work your way through this lecture. You must use this section to familiarize yourself with the commands and the various aspects of Linux in relation to this course. All of the topics are important, don't skip any of the topics in this lecture.

If you are familiar with Linux and have used the command line to before, then please feel free to skip this lecture.

This is the third Essential Skills Lecture

In this lecture I'm going to introduce you to the essential Linux skills you need to complete this course successfully.

This is the new 2024 Linux Essential Skills mini - crash - course that I include with all my courses.

If you are new to Linux, it's very important that you take your time and work your way through this lecture. You must use this section to familiarize yourself with the commands and the various aspects of Linux in relation to this course. All of the topics are important, don't skip any of the topics in this lecture.

If you are familiar with Linux and have used the command line to before, then please feel free to skip this lecture.

This is the fourth Essential Skills Lecture

In this lecture we are going to look at the software you require to complete the course successfully. All the software used in this course and this includes any WordPress themes or plugins is free and or open source. You will not be required to purchase any software.

In this section we look at web hosts, server specifications for different types of WordPress sites. We are also going to create a server instance for the course.

Server hardening begins by changing the root user's password, creating a new non-root user, granting it root privileges, and then disabling root login for improved security.  This is the first lecture of the initial hardening process.

Server hardening begins by changing the root user's password, creating a new non-root user, granting it root privileges, and then disabling root login for improved security.  This is the second lecture of the initial hardening process.

As the non-root user, the process continues by enabling SSH key authentication to replace password-based logins, simplifying access with an SSH config file. Regularly updating server packages ensures security patches are applied, while implementing firewall policies locks down unused ports and services. Finally, installing Fail2ban helps protect against brute-force attacks by monitoring and banning suspicious login attempts. This is the first lecture of the hardening process as the non-root user.

As the non-root user, the process continues by enabling SSH key authentication to replace password-based logins, simplifying access with an SSH config file. Regularly updating server packages ensures security patches are applied, while implementing firewall policies locks down unused ports and services. Finally, installing Fail2ban helps protect against brute-force attacks by monitoring and banning suspicious login attempts. This is the second lecture of the hardening process as the non-root user.

As the non-root user, the process continues by enabling SSH key authentication to replace password-based logins, simplifying access with an SSH config file. Regularly updating server packages ensures security patches are applied, while implementing firewall policies locks down unused ports and services. Finally, installing Fail2ban helps protect against brute-force attacks by monitoring and banning suspicious login attempts. This is the third lecture of the hardening process as the non-root user.

As the non-root user, the process continues by enabling SSH key authentication to replace password-based logins, simplifying access with an SSH config file. Regularly updating server packages ensures security patches are applied, while implementing firewall policies locks down unused ports and services. Finally, installing Fail2ban helps protect against brute-force attacks by monitoring and banning suspicious login attempts. This is the fourth lecture of the hardening process as the non-root user.

Advanced server hardening involves several key optimizations and security measures. First, set the server's timezone to your local time. To prevent crashes due to memory exhaustion, configure SWAP to use SSD space as virtual memory. Secure the shared memory space to prevent exploitation and disable IPv6 by modifying the grub configuration. Harden and optimize the TCP/IP stack, and switch congestion control to BBR (Bottleneck Bandwidth and Round-trip Time) to boost throughput and reduce latency. For performance improvements, disable filesystem tracking of file access times and increase the maximum number of open files per process to allow for more concurrent connections. This is the first lecture of the section dealing with hardening and optimizing the server distro.

Advanced server hardening involves several key optimizations and security measures. First, set the server's timezone to your local time. To prevent crashes due to memory exhaustion, configure SWAP to use SSD space as virtual memory. Secure the shared memory space to prevent exploitation and disable IPv6 by modifying the grub configuration. Harden and optimize the TCP/IP stack, and switch congestion control to BBR (Bottleneck Bandwidth and Round-trip Time) to boost throughput and reduce latency. For performance improvements, disable filesystem tracking of file access times and increase the maximum number of open files per process to allow for more concurrent connections. This is the second lecture of the section dealing with hardening and optimizing the server distro.

Advanced server hardening involves several key optimizations and security measures. First, set the server's timezone to your local time. To prevent crashes due to memory exhaustion, configure SWAP to use SSD space as virtual memory. Secure the shared memory space to prevent exploitation and disable IPv6 by modifying the grub configuration. Harden and optimize the TCP/IP stack, and switch congestion control to BBR (Bottleneck Bandwidth and Round-trip Time) to boost throughput and reduce latency. For performance improvements, disable filesystem tracking of file access times and increase the maximum number of open files per process to allow for more concurrent connections. This is the third lecture of the section dealing with hardening and optimizing the server distro.

In this section we are going to look at how you point a domain name to your server using Cloudflare.

In this section of the course, we are going to look at official and unofficial repositories, the package manager and we are going to install the hosting stack. The hosting stack consists of nginx, MariaDB and php 8.3.

Nginx is the web server, MariaDB the database management system and php is the server-side scripting language that is responsible for generating the dynamic WordPress page content.

In this section we are going to configure the server to send mail using php. This will enable a SMTP service on your WP site and allow your sites to send mail without using any plugins.

We are also going to look at the easiest method to create a mail@your_domain email account.

Before we start configuring nginx, we need to look at the layout of a nginx configuration file as well as definitions that relate to nginx. This section is important as it teaches you how to read and understand a nginx configuration file.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the first of three lectures covering nginx.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the second of three lectures covering nginx.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the last lecture covering nginx.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the first of three lectures covering MariaDB.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the second of three lectures covering MariaDB.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the last lecture covering MariaDB.

We've installed the hosting stack, now we need to harden and optimize the stack. This is essential to protect against security vulnerabilities, improve performance, and ensure the stability and reliability of your server under varying workloads. Each component of the hosting stack will be hardened and optimized.

The is the first of two lectures covering PHP.

In this section we are going to look at file and directory administration. We are going to create the directories that are going to store our WP files and directories.

You can use the term server context or server block.

Nginx Server Blocks allow you to host and serve more than one site on your server. Some of the configuration that is included in a server block:

  • port nginx must listen on 80 or 443

  • domain name

  • site root - where the files are located

  • the index page nginx must serve

If you have used Apache before, the server context or server block is the equivalent of a virtual host. For each site you intend to host, you need to create a server block for that site.

This is the first of two lectures in this section

You can use the term server context or server block.

Nginx Server Blocks allow you to host and serve more than one site on your server. Some of the configuration that is included in a server block:

  • port nginx must listen on 80 or 443

  • domain name

  • site root - where the files are located

  • the index page nginx must serve

If you have used Apache before, the server context or server block is the equivalent of a virtual host. For each site you intend to host, you need to create a server block for that site.

This is the last lecture in this section

In this section, we are going to installing WordPress. This is part one of the correct procedure to install WordPress on a VPS or dedicated server.

In this section, we are going to installing WordPress. This is part two of the correct procedure to install WordPress on a VPS or dedicated server.

Hardening a WordPress site is crucial for enhancing its security and protecting it from various cyber threats. WordPress, being one of the most popular content management systems, is often targeted by hackers due to its widespread use.

Hardening your WordPress site is an essential step in maintaining its security and integrity, safeguarding both your data and the experience of your users.

By separating sites using PHP pools ensures better resource management and isolation, minimizing the impact of potential vulnerabilities.

Ownership and permissions must be set correctly, especially when using php pools, to prevent ownership and permissions from effecting site functionality.

We'll also lock the site down using open_basedir. This sets the access levels of files and directories, to help reduce the risk of unauthorized access and malicious activities.

We are going to install free ssl certificates and serve our sites over https only. The certificates will be rated A+.

The WP CRON system is used to schedule tasks to run at intervals on your WordPress site. Some examples are scheduling when you want a post to be published, checking for updates, or running a backup plugin at a specific time.

Unfortunately, as your site traffic increases so does the resource demands that WP CRON makes on your server. It will eventually start to slow down your server.

Running a cron from the server-side is so much more efficient than WP CRON as the server doesn’t need to involve PHP, the server will execute the CRON with minimal remands for resources.

We are going to harden the HTTP response headers. This is a security practice aimed at reducing the risk of certain types of attacks and improving overall server security.

We are going to make use of Nginx directives to further harden our WordPress site.

We'll look at the practice of using NGINX to protect a site against DDoS attacks and why it's not recommended for WP sites.

Implement rate limiting to prevent brute force attacks and protect server resources.

We'll look at Ninja Firewall, to provide an additional layer of security.

We'll also implement hotlinking protection of your site's assets by configuring Cloudflare and we'll also look at using NGINX to block requests from unauthorized referrers.

We are going to look at the WP constant DISALLOW_FILE_EDIT. This prevents attackers who gain access to WordPress admin from modifying files via the dashboard

We are going to harden the site database privileges and the WP Rest APU.  Implementing these measures can significantly enhance the security of your WordPress installation running on NGINX, protecting it against various common threats and vulnerabilities.

Caching is the process of storing frequently-accessed data temporarily in a cache so it can be reused for subsequent requests. The cache can be stored on disk or RAM, although RAM is best as it's much faster than a SSD drive.

So how does this relate to WP?

Optimizing WordPress involves addressing both server-side and application-side configurations that will significantly boost your WordPress site's speed and reliability. The most important step in optimizing WP is caching.

If you don’t need WP post revisions, then it's recommended to disable revisions as this can be beneficial for a few reasons

If you are running a large and complex site with many plugins and to avoid memory errors and performance issues, you need to increase the amount of memory that WordPress can use on the server. To accomplish this you need to set the php memory limit and the WP memory limit.

The types of caching we are going to look at in the course are as follows: page, object, opcode and browser caching.

A static WordPress site is a type of website where the content remains largely unchanged over time and is primarily informational. Such sites are typically used for presenting fixed content, such as company information, service descriptions, or portfolio displays.

A dynamic WordPress site is a type of website where content is frequently updated and often includes interactive features.

These sites are well-suited for applications where content changes regularly, such as blogs with active comment sections, news sites, e-commerce platforms, and forums.

Implementing caching in WordPress depends significantly on whether the site is static or dynamic, as each type benefits from different caching strategies.

FastCGI Caching

Configure Nginx to use FastCGI caching for serving cached pages directly from the server, bypassing PHP for maximum efficiency.

WP Super Cache:

Use this plugin to generate static HTML files and serve them directly, minimizing server load and speeding up page delivery.

W3 Total Cache (W3TC):

Utilize this comprehensive plugin for page caching, browser caching, and also CDN integration to optimize static content delivery.

To make use of Redis for object caching, you first need to install and configure Redis on your server.

Once Redis is installed and configured, it can be used by any site on your server. However, sites don't automatically use Redis; you must install and enable a Redis plugin for each site that you want to benefit from object caching.

Caching a dynamic site effectively involves a combination of page and object caching strategies to balance performance optimization with maintaining dynamic functionality.

When caching a dynamic site, it's crucial to choose the right caching strategy to balance performance and functionality.

WP Super Cache, can be combined with object caching to improve site speed and responsiveness while maintaining dynamic content accuracy.

When caching a dynamic site, it's crucial to choose the right caching strategy to balance performance and functionality.

W3TC offers advanced caching options and built-in support for object caching, making it an excellent choice for managing both page caching and object caching in one solution.

Configuring PHP-FPM to handle incoming PHP requests effectively, it is crucial to specify the maximum number of child processes that PHP-FPM can spawn.

I encourage you to sign up for the free CF plan, it offers many advantages.

CF provides features such as a Content Delivery Network (CDN), which helps speed up website load times by distributing content across global data centers, ensuring faster access for users regardless of their location. Additionally, it includes basic DDoS protection to safeguard against malicious traffic and attacks, as well as SSL/TLS encryption for secure connections. The free plan also grants access to Cloudflare’s analytics, offering insights into website traffic and threats. These features collectively improve user experience, security, and website performance at no cost.

Regular server updates are important for maintaining the security, stability, and performance of your server. These updates encompass a variety of tasks, including installing security patches to safeguard against threats, fixing bugs to enhance reliability, and optimizing performance through software upgrades and removal of obsolete components.

WordPress updates, whether they involve the core, themes, or plugins, can sometimes lead to unexpected issues such as conflicts between different components or compatibility issues with other plugins or themes.

Having a backup in place provides you with a safety net. If an update causes any problems, you can quickly restore your site to its previous state and then investigate the issue further without causing prolonged downtime or potential data loss

In this lecture we look at WordPress backups. WordPress site migration and the WordPress Command Line Interface.

We are going to install ClamAV and Rkhunter.

ClamAV is a free and open-source antivirus engine to detect malware, viruses, and other malicious programs and software on your system.

A rootkit is a set of software tools that enable an unauthorized user to gain control of a computer system without being detected.

Rkhunter is a free a tool that is used to scan for backdoors, rootkits, and other vulnerabilities.

What we are going to cover in this section, is optimizing MariaDB, the Database Management System, so it can function more efficiently and offer higher performance.

Setting the correct pm.max_children directive correctly is important as setting it too low or too high can have a huge impact on your server's performance.

It's important to monitor the uptime of your sites.

Administering disk space on an Ubuntu server is an important task, as you server can crash is you run out of space.

The process involves several tasks, including monitoring disk usage and then cleaning up unnecessary files

The "default" nginx server block acts as a fallback for any incoming requests that don't match a more specific server block configuration. This ensures that even if a request doesn't target a specific website hosted on the server, Nginx will still serve some content, this is not a good security practice,

The "backlog" in the context of Nginx refers to the maximum length of the queue of pending connections waiting to be accepted by Nginx.

The opcache.max_accelerated_files defines the maximum number of PHP scripts files that OPcache can store in its internal hash table.

This setting directly impacts the number of scripts that can be cached for faster retrieval and therefore improving PHP application performance.

I'm not in favour of installing PMA on a server. I much prefer to use a desktop client and login to the server using a ssh tunnel.

Unfortunately, students prefer to use PMA, so they install and configure PMA using various online guides. These guides normally cover only the installation and not the hardening of PMA once installed. This can create a huge security risk on the server.

For this reason, I decided to include PMA installation, configuration and hardening in the course.

FileZilla is a free cross platform sftp client that can be used to upload and download files to and from your server.

A CSP dictates which resources (scripts, stylesheets, images, etc.) a web browser is allowed to load from specific domains. This restricts the execution of untrusted code, enhancing website security.

Implementing a CSP provides an additional layer of security that is extremely beneficial to a site.

Unfortunately, a CSP for a WP site will break your site unless the unsafe-inline and unsafe-eval directives are enabled. Enabling the directives unsafe-inline, unsafe-eval and allowing embedded data in a WordPress CSP policy is extremely dangerous

Traffic lights

Read about what's good
what should give you pause
and possible dealbreakers
Covers hardening Nginx, MariaDB, and PHP 8.3, which prepares the server for real-world challenges and is essential for secure web hosting
Includes a crash course on Linux essentials, which is helpful for beginners who are new to server administration and want to learn the basics
Focuses on securing WordPress sites beyond superficial security plugins, teaching how to protect files and stop hotlinking and DDoS attacks
Uses Ubuntu 24.04, which is a recent LTS release, so learners can be assured that the skills they learn are up-to-date and relevant
Teaches how to configure and secure a server without relying on hosting provider support, empowering learners to become their own system administrators
Requires learners to set up a server on a VPS or dedicated server, which may require additional costs and technical knowledge to complete

Save this course

Create your own learning path. Save this course to your list so you can find it easily later.
Save

Reviews summary

Secure optimized nginx server for wordpress

Based on the detailed course description and syllabus, learners can expect this course to provide a comprehensive guide to setting up a hardened and optimized Nginx server on Ubuntu 24.04, specifically tailored for hosting WordPress sites. It appears designed to make server management accessible, potentially including a helpful mini Linux crash course. A major focus seems to be on in-depth security and hardening techniques at the server level, going beyond simple plugins. The curriculum also highlights methods for performance optimization, such as configuring caching and tuning the server stack. Students are likely to value the real-world approach using a VPS or dedicated server for practical experience. While covering a wide range of topics, the course might be challenging for absolute beginners due to its technical depth and specific stack focus.
Helpful intro for those new to Linux.
"The included Linux crash course seems like a lifesaver, providing just enough basics to follow along."
"Even with minimal Linux background, I expect to grasp the essential commands thanks to the intro."
"It's good that the course attempts to cater to newcomers before moving to advanced topics."
Hands-on setup on a live VPS.
"Working on an actual VPS feels very practical and prepares you for managing live sites."
"It's much better than just using a local VM; this seems like real-world server administration training."
"Setting up domain names and SSL certificates on a live server appears to be a valuable exercise."
Valuable methods for boosting server speed.
"The caching configurations, especially FastCGI and Redis, seem like they'd make a noticeable difference in site speed."
"Tuning the TCP/IP stack and PHP-FPM appears to be a great practical skill to learn for performance."
"I anticipate learning how to optimize MariaDB and configure server-side cron to be very beneficial."
Detailed security steps for server and WordPress.
"I learned detailed steps for hardening the server that go way beyond just installing a security plugin."
"The sections on SSH key auth, firewalls, and Fail2ban were incredibly useful for securing access."
"Applying the advanced hardening steps for Nginx, MariaDB, and PHP felt really robust."
May be challenging for true beginners.
"Despite the Linux intro, the course seems to move quickly into complex server configurations."
"Beginners might need to pause and rewatch sections frequently to keep up with the technical details."
"While the depth looks great, it likely assumes some comfort with command-line environments."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in The Perfect Nginx Server - Ubuntu (24.04) Edition with these activities:
Review Linux Command Line Basics
Reinforce foundational Linux command-line skills to ensure a smoother learning experience in server configuration and management.
Browse courses on Linux Command Line
Show steps
  • Practice basic navigation commands like `cd`, `ls`, and `pwd`.
  • Review file manipulation commands such as `cp`, `mv`, and `rm`.
  • Familiarize yourself with permission commands like `chmod` and `chown`.
Review 'Linux Bible'
Solidify understanding of Linux fundamentals with a comprehensive guide, preparing you for advanced server management tasks.
View Linux Bible on Amazon
Show steps
  • Read the chapters on file system navigation and management.
  • Study the sections on user management and permissions.
  • Review the chapters on system administration and security.
Practice Nginx Configuration
Reinforce Nginx configuration skills through repetitive exercises, improving your ability to optimize and secure web servers.
Show steps
  • Set up a basic Nginx server block for a simple website.
  • Configure SSL/TLS certificates for secure HTTPS connections.
  • Implement caching strategies to improve website performance.
  • Practice setting up redirects and rewrites for URL management.
Four other activities
Expand to see all activities and additional details
Show all seven activities
Document Server Hardening Steps
Solidify your understanding of server hardening by creating a detailed guide, reinforcing security best practices.
Show steps
  • Document each hardening step covered in the course.
  • Explain the purpose and benefits of each step.
  • Include code snippets and configuration examples.
  • Organize the documentation for easy reference.
Build a Staging Server
Apply the course's teachings by building a staging server, allowing you to test configurations and security measures in a safe environment.
Show steps
  • Set up a separate server instance for staging.
  • Replicate the production environment on the staging server.
  • Test new configurations and updates on the staging server.
  • Document the testing process and results.
Automate Server Backups
Enhance your server management skills by creating an automated backup solution, ensuring data protection and disaster recovery capabilities.
Show steps
  • Choose a backup solution (e.g., rsync, Duplicati).
  • Configure the backup solution to run automatically.
  • Test the backup and restore process.
  • Document the backup configuration and procedures.
Review 'Nginx HTTP Server'
Deepen your understanding of Nginx with an advanced guide, enabling you to optimize server performance and security.
View NGINX HTTP Server: Harness the power of NGINX... on Amazon
Show steps
  • Read the chapters on advanced configuration techniques.
  • Study the sections on performance tuning and optimization.
  • Review the chapters on security best practices.

Career center

Learners who complete The Perfect Nginx Server - Ubuntu (24.04) Edition will develop knowledge and skills that may be useful to these careers:
Systems Administrator
A Systems Administrator is responsible for the upkeep, configuration, and reliable operation of computer systems, especially servers. This course, focused on building a complete Nginx server from scratch on Ubuntu, directly translates to the daily tasks of a Systems Administrator. The course provides a deep dive into server configuration, security hardening, and optimization including SSH key authentication, firewalls, and protection against brute force attacks. The course also covers optimizing the network layer, adjusting swap and shared memory, fine tuning Nginx and database settings, and controlling file access, all of which are critical for a Systems Administrator. This hands-on approach, that involves monitoring server logs and deploying hardened WordPress sites, will help one become a confident Systems Administrator who can manage a server without relying on external support.
See salaries and explore the career path for Systems Administrator
Freelance Web Host
A Freelance Web Host provides web hosting and server management to clients, and needs a solid foundation in server configuration and security to succeed. This course provides all necessary skills for a Freelance Web Host by teaching the setup and optimization of an Nginx server on Ubuntu. The course covers server hardening, performance tuning, and deployment of secure WordPress sites, offering the hands-on experience required for offering high-quality hosting services. With the ability to implement SSH key authentication, firewalls, and protect against brute force attacks, this course enables a Freelance Web Host to confidently manage their own server and offer hosting, optimization, and security services to clients.
See salaries and explore the career path for Freelance Web Host
Web Server Administrator
A Web Server Administrator is responsible for the smooth operation of web servers, ensuring they are secure, performant, and reliable. This course helps one become an effective Web Server Administrator by offering a practical approach to building and managing an Nginx server, a critical skill for this role. This course covers the essentials of server configuration using Ubuntu. In addition, it provides extensive training on optimizing performance and hardening security of the server, including secure configurations of Nginx, MariaDB, and PHP 8.3. The ability to troubleshoot, monitor, and optimize server performance are key for a Web Server Administrator and this course will help them learn these skills in a very hands-on way.
See salaries and explore the career path for Web Server Administrator
Linux System Administrator
A Linux System Administrator is responsible for managing and maintaining Linux-based servers, ensuring that they are running efficiently and securely. This course will help a prospective Linux System Administrator learn the ropes by providing an in-depth, hands-on experience with setting up a complete Nginx server on Ubuntu. The course also includes a crash course on Linux, and covers a range of critical skills such as configuring firewalls, implementing SSH key authentication, tuning the network layer, adjusting swap and shared memory, fine-tuning Nginx and database settings, and controlling file access and limits. All of these skills are directly applicable to the work of a Linux System Administrator, making this a valuable course for anyone interested in entering the field. The ability to manage the server without external support is also a key skill developed during this course.
See salaries and explore the career path for Linux System Administrator
WordPress Hosting Specialist
A WordPress Hosting Specialist focuses on optimizing and managing server environments specifically for WordPress sites. This course is a perfect fit for this role by teaching you to build an optimized Nginx server on Ubuntu and how to deploy hardened WordPress sites. The course covers a wide range of skills from configuring and hardening the server, to implementing server-side caching and hardening WordPress itself, including how to secure files, prevent hotlinking, and protect against DDoS attacks. This course will enable an aspiring WordPress Hosting Specialist to manage multiple secure, fast WordPress sites on a single server, and also offer site hosting, optimization and security services to clients.
See salaries and explore the career path for WordPress Hosting Specialist
DevOps Engineer
A DevOps Engineer bridges the gap between software development and IT operations, with a focus on automation and efficiency. This course helps a prospective DevOps Engineer by providing a practical understanding of server setup, configuration, and management, particularly with Nginx, MariaDB, and PHP on Ubuntu. This course emphasizes hardening and optimizing servers, implementing secure configurations and fine-tuning performance parameters. A strong knowledge of server management is critical for an aspiring DevOps Engineer, and this course will help them to learn to build a server from the ground up, host secure WordPress sites, and implement server side caching. Understanding these critical components gives the DevOps Engineer the necessary skill set to automate and optimize deployment pipelines.
See salaries and explore the career path for DevOps Engineer
Cloud Engineer
A Cloud Engineer designs, builds, and manages cloud computing systems, which often involve virtual servers. This course helps an aspiring Cloud Engineer learn the fundamentals of server administration, configuration and security by using Ubuntu and Nginx to create a hosting environment. The Cloud Engineer will learn how to set up firewalls, implement SSH key authentication, tune the server, harden Nginx, MariaDB, and PHP, and deploy hardened WordPress sites. These skills are all invaluable when configuring and managing cloud-based infrastructure. Moreover, a Cloud Engineer will benefit from the understanding of server logs and observing how the configurations actively defend against malicious traffic.
See salaries and explore the career path for Cloud Engineer
Site Reliability Engineer
A Site Reliability Engineer ensures the reliability, performance, and scalability of websites. This course helps a prospective Site Reliability Engineer with a thorough understanding of server management by providing hands-on experience in configuring and optimizing an Nginx server on Ubuntu. The course discusses essential skills such as server hardening, performance tuning, and secure deployment of WordPress sites, which are directly applicable to the daily tasks of a Site Reliability Engineer. This course provides a practical approach to monitoring server logs and observing how the configurations fend off threats, which is crucial for this role.
See salaries and explore the career path for Site Reliability Engineer
Technical Support Specialist
A Technical Support Specialist provides assistance to users experiencing issues with hardware or software. This course provides a great background for a Technical Support Specialist who focuses on web hosting and server environments. The course focuses on the configuration and management of Nginx servers on Ubuntu, which are important technologies in the web hosting world. The understanding of server security, optimization, and maintenance developed in this course, allows a Technical Support Specialist to offer knowledgeable support to clients. The hands-on approach to troubleshooting and the focus on practical application will be also useful in performing their daily tasks.
See salaries and explore the career path for Technical Support Specialist
Network Administrator
A Network Administrator is responsible for maintaining and managing an organization’s computer network, which includes servers, firewalls, and other network devices. This course helps someone become a proficient Network Administrator by giving a hands-on understanding of essential server components and their configuration. This includes setting up firewalls, understanding network layer optimization, and securing servers against attacks. The course provides a practical approach to server hardening, performance tuning, and secure configuration, all of which are critical skills for a Network Administrator to manage and secure an organization's network effectively. The course also features real world application of monitoring server logs which develops the ability to detect vulnerabilities and respond to threats.
See salaries and explore the career path for Network Administrator
IT Consultant
An IT Consultant offers expert advice and solutions to organizations regarding their IT infrastructure and systems. This course is highly beneficial for an IT Consultant, particularly one who specializes in web hosting and server management solutions. The course provides a comprehensive understanding of setting up and managing secure web servers using Nginx on Ubuntu. An IT consultant will be able to offer practical and efficient solutions to their clients, that are built on proven practices in security hardening and server optimization. This course, which focuses on real world application, will help the IT consultant understand how to implement best practices in server design and management.
See salaries and explore the career path for IT Consultant
Web Developer
A Web Developer creates and maintains websites, and often needs to understand how the server works. This course could help a Web Developer by providing practical knowledge of setting up and configuring an Nginx server on Ubuntu. The course offers an in-depth look at a server environment, and covers topics such as server hardening, optimization, and securing WordPress. Knowing how a server works allows a Web Developer to build performant and secure websites. This course is particularly useful for any Web Developer focused on WordPress as it teaches server-side optimization, which is more effective than most caching plugins.
See salaries and explore the career path for Web Developer
Security Analyst
A Security Analyst monitors and protects computer systems and networks from cyber threats. This course is extremely helpful for a Security Analyst, as it provides a practical approach to securing a server environment with Nginx on Ubuntu. The course emphasizes hardening servers, implementing firewalls, and protecting against brute force attacks, which are all critical aspects of a Security Analyst. The knowledge of server logs, fine tuning of Nginx and database settings, and how to protect WordPress sites from various threats gives the Security Analyst the skills and knowledge needed to protect an organization's assets. This course will also assist them in understanding the vulnerabilities that can exist in a web environment.
See salaries and explore the career path for Security Analyst
Technical Trainer
A Technical Trainer develops and delivers training programs on technical topics. This course can assist a Technical Trainer, especially if their area of focus includes web server administration and Linux system administration. The course offers a hands-on approach to server hardening and optimization using Ubuntu. This course teaches the trainer the skills to develop and deliver detailed training programs on server configuration, security, and performance. The expertise developed in this course also enables the Technical Trainer to confidently explain the concepts of server management and security to their trainees.
See salaries and explore the career path for Technical Trainer
IT Project Manager
An IT Project Manager oversees and coordinates IT projects, ensuring they are completed on time and within budget. This course is useful for an IT Project Manager as it gives them a technical understanding of server and web hosting setups using Nginx, MariaDB and PHP, on Ubuntu. Furthermore, the course provides background in the security hardening and optimization of the server. This helps an IT Project Manager to effectively communicate with technical staff involved in server administration projects. This course will assist the IT Project Manager to better understand project timelines, resource requirements, and potential challenges, and hence, be better at managing the project.
See salaries and explore the career path for IT Project Manager

Reading list

We've selected two books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in The Perfect Nginx Server - Ubuntu (24.04) Edition.
Cover image
NGINX HTTP Server - Fifth Edition
Save
Delves deep into Nginx configuration and optimization, providing advanced techniques for improving server performance and security. It's an excellent resource for students who want to go beyond the basics covered in the course and master Nginx. The book is particularly helpful for understanding complex configurations and troubleshooting issues. It is commonly used by industry professionals.
NGINX HTTP Server: Harness the power of NGINX with...
Paperback
$$
Cover image
Linux Bible
Save
The 'Linux Bible' provides a comprehensive guide to Linux, covering everything from basic commands to advanced server administration. It's particularly useful for beginners who need a solid foundation in Linux before diving into Nginx server configuration. serves as a valuable reference throughout the course and beyond, offering detailed explanations and practical examples. It is commonly used as a textbook in Linux courses.
Linux Bible
Paperback
$$$

Share

Help others find this course page by sharing it with your friends and followers:
Facebook
LinkedIn
Reddit
X
Link
Email

Similar courses

Similar courses are unavailable at this time. Please try again later.
Course image
Rating
4.8 Filled star Filled star Filled star Filled star Half star
Effort
22 total hours
Via
Udemy
Instructor
Andrew Eaton
Language
English
Traffic lights
Read about what's good
what should give you pause
and possible dealbreakers
Covers hardening Nginx, MariaDB, and PHP 8.3, which prepares the server for real-world challenges and is essential for secure web hosting
Includes a crash course on Linux essentials, which is helpful for beginners who are new to server administration and want to learn the basics
Focuses on securing WordPress sites beyond superficial security plugins, teaching how to protect files and stop hotlinking and DDoS attacks
Uses Ubuntu 24.04, which is a recent LTS release, so learners can be assured that the skills they learn are up-to-date and relevant
Teaches how to configure and secure a server without relying on hosting provider support, empowering learners to become their own system administrators
Requires learners to set up a server on a VPS or dedicated server, which may require additional costs and technical knowledge to complete
Share this
Share to help others discover this course.
Facebook LinkedIn X Reddit Link Email
Begin learning today
Enroll now to gain full access to The Perfect Nginx Server - Ubuntu (24.04) Edition.
Enroll now
Save for later
Add this course to your list. Find it anytime.
Save
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2025 OpenCourser