Description
Basic request filtering against XSS and SQL injection patterns can be added to nginx mainline with NAXSI. It is useful for administrators who want a lightweight rule-based protection layer before applications.
Security filters need tuning and can create false positives. They do not replace secure application code or regular vulnerability fixes.