Solved

Coldfusion code looking for CGI.https_keysize lt 128 and Blocking the user

Posted on 2012-12-21
3
361 Views
Last Modified: 2012-12-27
Hello Experts,

CF Code is looking for CGI. https_keysize variable and does an abort when its lt 128.

<cfif CGI.https_keysize LT 128>
      We will only allow 128-bit encrypted connection between your machine and our web site.  
Your Internet browser is not able to support High Encryption, please contact your Helpdesk or System Administrator to apply 128-bit Encryption Pack on your Internet browser.

      <cfabort>
</cfif>

I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable

I am unaware how to resolve this issue, Do I need to something for the cg.https_keysize to return some value.?
0
Comment
Question by:Dan_Schimo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 36

Expert Comment

by:SidFishes
ID: 38713727
I'm confused by this

"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable"

CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.
0
 

Author Comment

by:Dan_Schimo
ID: 38713794
Thank you for your input SidFishes . This code was running on some server, before it came to me. Yes, previously they had https: in the URL. Can you please let me know how to get the Https in the URL on this Current server.

CF 10
Local Box xp
IIS 5.1

site is currently running on localhost 127.0.0.1
0
 
LVL 36

Accepted Solution

by:
SidFishes earned 500 total points
ID: 38713880
Well, that really should be another question but since it's the holidays....

You need an SSL certificate. You can buy one from verisign, godaddy, digicert and others.
or you can generate your own if this is for intranet use (local network only)

Self signed certs on iis5.1
http://huntjason.wordpress.com/2007/03/27/generating-self-signed-certificates-to-enable-ssl-https-on-iis-5-1-windows-xp-professional/

Then follow these steps.
http://www.codeproject.com/Articles/56958/Securing-My-Website-Using-SSL-in-Local-IIS-5-1-and

If you need more help than what those links provide, you'll need to start a new question as this one is answered. (A: you can't use cgi.https_keysize without SSL)
0

Featured Post

Business Impact of IT Communications

What are the business impacts of how well businesses communicate during an IT incident? Targeting, speed, and transparency all matter. Find out more in this infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article  is about submitting  form through  ColdFusion.Ajax.submitForm to the action page and send a response back in JSON format which later can be decoded using ColdFusion.JSON.decode. By this way you can avoid the usual page refresh for subm…
The technique is by far very Simple! How we can export the ColdFusion query results to DOC file?  Well before writing this I researched a lot in Internet but did not found a good Answer anyways!  So i thought now i should share my small snippet w…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question