Description
Request filtering against common XSS and SQL injection patterns can be added to nginx using the development NAXSI module. It is useful for administrators testing a lightweight rule-based protection layer.
Security filters require tuning and can create false positives. They do not replace secure application code or regular vulnerability fixes.