Preventing directory indexing using ASM attack signature

Hi all,

 

 

A question on how to prevent web server Directory Indexing comes up fairly often. Here is an attack signature that can prevent directory indexing/browsing, however will permit direct request/access to files stored in that dir. In this example, access allowed only to files with 4 char long extensions.

 

 

There are other usages for this set of sigs. For example, preventing directory indexing and allowing access to specific files/extensions only.

 

 

Signature:

 

 

uricontent:"/downloads"; objonly; nocase; pcre:!"/.+\w\.+\w{1,4}$/Oi";

 

 

Regards,

 

-Askar