NGINX installer
Fast and complete NGINX installer
- Mainline or stable version from source
- Multiples modules and patch available
- Block NGINX installation using APT to avoid conflicts
- LibreSSL v3.8.2 from source
- OpenSSL v3.2.1 from source
- OpenSSL v3.1.5+quic from source
- HTTP/3 Support (with LibreSSL or Quic) Only available with NGINX mainline
- nginx-ssl-fingerprint: high performance nginx module for ja3 and http2 fingerprint.
- ngx_brotli: Brotli compression algorithm
- headers-more-nginx-module: Custom HTTP headers
- testcookie-nginx-module: simple robot mitigation module using cookie based challenge/response
- nginx_substitutions_filter: filter module which can do both reguar expression and fixed string substitutions on response bodies
- ngx_cache_purge: adds ability to purge content from FastCGI, proxy, SCGI and uWSGI caches.
- nginx_cookie_flag_module: allows to set the flags "HttpOnly", "secure" and "SameSite" for cookies.
- NAXSI: open-source, high performance, low rules maintenance WAF for NGINX
- ngx_http_tls_dyn_size: Optimizing TLS over TCP to reduce latency for NGINX
- ngx_http_gzip_module: compresses responses using the “gzip” method.
And more can be added in the future...
wget https://raw.githubusercontent.com/retouching/nginx-installer/master/nginx-installer.sh -O nginx-installer.sh
chmod +x nginx-installer.sh
./nginx-installer.sh- Install / Update NGINX
- Uninstall NGINX with optional cleanup
- Self-update the script
You can run the script without the prompts. This allows for automated install and scripting.
./nginx-installer.sh --headlessVariables can be set in the environment to configure the script.
# Script mode
# 1: install / update nginx
# 2: uninstall nginx
# 3: update script
MODE=1
# Installation variables
# 1: mainline
# 2: stable
NGINX_VERSION=2
# y: install
# n: skip
HEADER_MORE=n
# y: install
# n: skip
SSL_FINGERPRINT=n
# 1: get openssl
# 2: get openssl+quic
# 3: get libressl
OPENSSL=1
# y: install
# n: skip
BROTLI=n
# y: install
# n: skip
TEST_COOKIE=n
# y: install
# n: skip
SUBSTITUTIONS_FILTER=n
# y: install
# n: skip
CACHE_PURGE=n
# y: install
# n: skip
HTTP3=n
# y: install
# n: skip
COOKIE_FLAG=n
# y: install
# n: skip
NAXSI=n
# y: install
# n: skip
TLS_DYN_SIZE=n
# y: install
# n: skip
ZLIB=n
# custom NGINX compile params
NGINX_COMPILATION_PARAMS="
--prefix=/etc/nginx \
--sbin-path=/usr/sbin/nginx \
--conf-path=/etc/nginx/nginx.conf \
--error-log-path=/var/log/nginx/error.log \
--http-log-path=/var/log/nginx/access.log \
--pid-path=/var/run/nginx.pid \
--lock-path=/var/run/nginx.lock \
--http-client-body-temp-path=/var/cache/nginx/client_temp \
--http-proxy-temp-path=/var/cache/nginx/proxy_temp \
--http-fastcgi-temp-path=/var/cache/nginx/fastcgi_temp \
--http-uwsgi-temp-path=/var/cache/nginx/uwsgi_temp \
--http-scgi-temp-path=/var/cache/nginx/scgi_temp \
--user=nginx \
--group=nginx \
--with-threads \
--with-poll_module \
--with-file-aio \
--with-http_ssl_module \
--with-http_v2_module \
--with-http_auth_request_module \
--with-http_slice_module \
--with-http_stub_status_module \
--with-http_realip_module \
--with-http_sub_module \
--with-stream_ssl_module \
--with-debug \
--with-stream \
--with-compat
"
# Uninstallation variables
# y: remove configuration
# n: skip
RM_CONF=y
# y: remove logs
# n: skip
RM_LOGS=yInstall NGINX stable with SSL fingerprint and headers-more-nginx-module
MODE=1 NGINX_VERSION=2 SSL_FINGERPRINT=y HEADER_MORE=y ./nginx-installer.sh --headlessDocker image available on Docker Hub. Includes all modules with OpenSSL v3.1.5 + QUIC (because this is the only one who have SSL fingerprint and HTTP/3 support).
docker run -d -p 80:5000 -v /my-sites:/etc/nginx/site-enabled retouch1ng/nginx- nginx-autoinstall: Original script to install NGINX with modules and patches