Forum Discussion
jwood2
Feb 04, 2020Nimbostratus
I agree that the finding is a bit weak but I'm still obligated to address it. What being said, I agree with you that the easiest way to fix this is probably with an iRule, but I was wondering specifically how I could implement this sanity check for '[HTTP::uri] starts_with "/"' in a policy. I think I found my answer, within the policy I have configured:
Match all the following conditions:
HTTP URI path begins with any of / at request time
Do the following when traffic is matched:
Redirect to location tcl:https://[getfield [HTTP::host] : 1][HTTP::uri] at request time