 João Pedro Toledo Goncalves
|
be7b271357
|
fix: restore legacy GEMINI docs, fix modsec loop, encoding issues
|
2026-02-08 14:24:23 -03:00 |
|
João Pedro Toledo Goncalves
|
254ecb09f7
|
docs: update snippets catalog and ignore .gemini
|
2026-02-07 02:12:40 -03:00 |
|
João Pedro Toledo Goncalves
|
af977eb2cb
|
chore: pivot repository to configuration-only (removed docker artifacts and sensitive data)
|
2026-02-06 16:41:59 -03:00 |
|
João Pedro Toledo Goncalves
|
3eafb5891b
|
chore: ignore default fail2ban jails
|
2026-02-05 14:43:00 -03:00 |
|
João Pedro Toledo Goncalves
|
c3b9316fd2
|
remoçao do .gemini
|
2026-01-29 09:03:08 -03:00 |
João Pedro
|
cd1a164114
|
feat(infra): Full migration to containerized NGINX with WAF and Auto-SSL
Major infrastructure upgrade implementing:
1. Architecture
- Containerized NGINX with custom Alpine build (Brotli + Headers More)
- ModSecurity WAF (OWASP CRS) as a sidecar/frontend service
- Fail2ban service monitoring logs for bot/attack mitigation
2. SSL Automation
- Integrated Certbot with custom daily validation scripts
- Automatic 3-day expiry detection and renewal
- Smart ACME challenge injection for all sites
3. Configuration
- Migrated 28 site configs to modular structure (conf.d/)
- Created reusable snippets (Rate Limiting, Security Maps, Caching)
- Fixed deprecated HTTP/2 syntax and ModSecurity directives
4. Documentation
- Added GEMINI.md with full architectural overview
- Cleanup of legacy files
|
2026-01-22 13:14:18 -03:00 |