Hello there,
just a quick question:
Nginx WAF section offers three options:
- block XSS score
- block SQL injection score
- custom security policy
Would block XSS and SQL injection score not being needed if I apply the custom security policy with the available values?