NAXSI is Nginx Anti XSS & SQL injection. In simple words, it’s a firewall for web applications (WAF) for Nginx, protecting from XSS, SQL injections, CSRF, Local & Remote file inclusions. NAXSI is known for its fast working and simple configuring. It’s a good alternative for mod_security in Apache.
What would you need NAXSI for?
It’s obvious that’s the best way of protection from attacks is correctly written code, but in some situations WAF and particularly NAXSI can help:
- low quality of site code with no resources or possibilities of rewriting it;
- closed source code in which fixing mistakes is impossible;
- the quality of code is unknown and unpredictable (i.e. shared hosting).