Hello! On Thu, May 29, 2014 at 4:05 PM, Jerome Lafon wrote: > I looking for a way to prevent SQL injection from Postgresql 9.3 > > If you have any idea do not hesitate to share. > See https://github.com/openresty/set-misc-nginx-module#set_quote_pgsql_str And you can call it from within Lua via the ndk.set_var API below: https://github.com/openresty/lua-nginx-module#ndkset_vardirective Regards, -agentzh
Hello! On Thu, May 29, 2014 at 4:05 PM, Jerome Lafon wrote: > I looking for a way to prevent SQL injection from Postgresql 9.3 > > If you have any idea do not hesitate to share. > See https://github.com/openresty/set-misc-nginx-module#set_quote_pgsql_str And you can call it from within Lua via the ndk.set_var API below: https://github.com/openresty/lua-nginx-module#ndkset_vardirective Regards, -agentzh.
I use NAXSI - [1]. It has OOTB rules for this. DRAGOS [1] - https://www.owasp.org/index.php/OWASP_NAXSI_Project