Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Coldfusion code looking for CGI.https_keysize lt 128 and Blocking the user

Posted on 2012-12-21
3
Medium Priority
?
365 Views
Last Modified: 2012-12-27
Hello Experts,

CF Code is looking for CGI. https_keysize variable and does an abort when its lt 128.

<cfif CGI.https_keysize LT 128>
      We will only allow 128-bit encrypted connection between your machine and our web site.  
Your Internet browser is not able to support High Encryption, please contact your Helpdesk or System Administrator to apply 128-bit Encryption Pack on your Internet browser.

      <cfabort>
</cfif>

I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable

I am unaware how to resolve this issue, Do I need to something for the cg.https_keysize to return some value.?
0
Comment
Question by:Dan Schimo
  • 2
3 Comments
 
LVL 36

Expert Comment

by:SidFishes
ID: 38713727
I'm confused by this

"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable"

CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.
0
 

Author Comment

by:Dan Schimo
ID: 38713794
Thank you for your input SidFishes . This code was running on some server, before it came to me. Yes, previously they had https: in the URL. Can you please let me know how to get the Https in the URL on this Current server.

CF 10
Local Box xp
IIS 5.1

site is currently running on localhost 127.0.0.1
0
 
LVL 36

Accepted Solution

by:
SidFishes earned 2000 total points
ID: 38713880
Well, that really should be another question but since it's the holidays....

You need an SSL certificate. You can buy one from verisign, godaddy, digicert and others.
or you can generate your own if this is for intranet use (local network only)

Self signed certs on iis5.1
http://huntjason.wordpress.com/2007/03/27/generating-self-signed-certificates-to-enable-ssl-https-on-iis-5-1-windows-xp-professional/

Then follow these steps.
http://www.codeproject.com/Articles/56958/Securing-My-Website-Using-SSL-in-Local-IIS-5-1-and

If you need more help than what those links provide, you'll need to start a new question as this one is answered. (A: you can't use cgi.https_keysize without SSL)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hi. There are several upload tutorials using jquery and coldfusion. I found a very interesting one here Upload Your Files using Jquery & ColdFusion and Preview them (http://www.randhawaworld.com/) . I did keep the main js functions but made sever…
Recently while working on a project I got a very annoying cfdocument has no body error message. I had never seen this error before. So I checked the code. The code was pretty simple; it was Just showing me the cfdocumnt tag and inside that tag a …
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
Suggested Courses
Course of the Month8 days, 21 hours left to enroll

876 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question