Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #CLI
- enable ns feature responder
- add responder action RespAct_403Forbidden respondwith "\"HTTP/1.1 403 Forbidden\""
- add responder policy RespPol_Fix_CVE-2019-19781 "HTTP.REQ.URL.DECODE_USING_TEXT_MODE.CONTAINS(\"/vpns/\") && (!CLIENT.SSLVPN.IS_SSLVPN || HTTP.REQ.URL.DECODE_USING_TEXT_MODE.CONTAINS(\"/../\"))" RespAct_403Forbidden
- bind responder global RespPol_Fix_CVE-2019-19781 1 END -type REQ_OVERRIDE
- save config
- #Shell (Primary/Secondary)
- shell nsapimgr_wr.sh -ys skip_systemaccess_policyeval=0
- shell "echo 'nsapimgr_wr.sh -ys skip_systemaccess_policyeval=0' >> /nsconfig/rc.netscaler"
- reboot
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement