Forum Discussion
samstep
Jul 21, 2017Cirrocumulus
There is no way to run 'exec' from an iRule - that would mean Remote Code Execution vulnerability and performance issues among other considerations why F5 has disabled this and several other commands in TCL.
Digitally signed iRules do not magically enable disabled TCL commands at all - they just allow you to verify the authors of the iRule and that nobody has tampered with the iRule code.
Also there is no way to create/write/modify an iFile from an iRule. You can only read iFiles (actually they are read by TMM into memory on boot or on iFile creation)
Do you really need to write the secret on disk? A better approach would be to store it in a memory table using the 'table' command:
https://devcentral.f5.com/wiki/irules.table.ashx