Solved

Coldfusion code looking for CGI.https_keysize lt 128 and Blocking the user

Posted on 2012-12-21
3
357 Views
Last Modified: 2012-12-27
Hello Experts,

CF Code is looking for CGI. https_keysize variable and does an abort when its lt 128.

<cfif CGI.https_keysize LT 128>
      We will only allow 128-bit encrypted connection between your machine and our web site.  
Your Internet browser is not able to support High Encryption, please contact your Helpdesk or System Administrator to apply 128-bit Encryption Pack on your Internet browser.

      <cfabort>
</cfif>

I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable

I am unaware how to resolve this issue, Do I need to something for the cg.https_keysize to return some value.?
0
Comment
Question by:Dan_Schimo
  • 2
3 Comments
 
LVL 36

Expert Comment

by:SidFishes
Comment Utility
I'm confused by this

"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable"

CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.
0
 

Author Comment

by:Dan_Schimo
Comment Utility
Thank you for your input SidFishes . This code was running on some server, before it came to me. Yes, previously they had https: in the URL. Can you please let me know how to get the Https in the URL on this Current server.

CF 10
Local Box xp
IIS 5.1

site is currently running on localhost 127.0.0.1
0
 
LVL 36

Accepted Solution

by:
SidFishes earned 500 total points
Comment Utility
Well, that really should be another question but since it's the holidays....

You need an SSL certificate. You can buy one from verisign, godaddy, digicert and others.
or you can generate your own if this is for intranet use (local network only)

Self signed certs on iis5.1
http://huntjason.wordpress.com/2007/03/27/generating-self-signed-certificates-to-enable-ssl-https-on-iis-5-1-windows-xp-professional/

Then follow these steps.
http://www.codeproject.com/Articles/56958/Securing-My-Website-Using-SSL-in-Local-IIS-5-1-and

If you need more help than what those links provide, you'll need to start a new question as this one is answered. (A: you can't use cgi.https_keysize without SSL)
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

PROBLEM:  How to open a cfwindow or run a function on double click of a cfgrid row. One of my clients wanted to be able to double click on a row item to get more detailed information about a transaction and to be able to modify the line items i…
PROBLEM: How to add your own buttons to the bottom toolbar with paging info ( result count ). While creating a cfgrid, I ran into an issue where I wanted to embed my own custom buttons where the default ones ( insert / delete / etc… ) are for aes…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now