Block SQL Injection

António P. P. Almeida appa at perusio.net
Thu Apr 21 01:42:50 MSD 2011


On 20 Abr 2011 18h05 WEST, nginx-forum at nginx.us wrote:

> Hi all. Anybody know how can I block some characters for avoid SQL
> Injection using Nginx as web server o HTTP reverse-proxy?

I think that using agentzh and chaoslawfull's Embedded Lua module
might fit the bill. Although as stated abovd, that's a hack. The proper
way to do it is at the app level.

https://github.com/chaoslawful/lua-nginx-module

--- appa




More information about the nginx mailing list