Forum Discussion
hooleylist
Oct 22, 2009Cirrostratus
Hi Andrea,
That syntax is okay, but wouldn't handle an attacker who makes a request for /nonexistent_directory/../cms/. See this post for details:
Irule for restriciting URL paths unsecure
http://devcentral.f5.com/Default.aspx?tabid=53&forumid=5&tpage=1&view=topic&postid=30900
Aaron