Link to home
Start Free TrialLog in
Avatar of Dan Schimo
Dan SchimoFlag for United States of America

asked on

Coldfusion code looking for CGI.https_keysize lt 128 and Blocking the user

Hello Experts,

CF Code is looking for CGI. https_keysize variable and does an abort when its lt 128.

<cfif CGI.https_keysize LT 128>
      We will only allow 128-bit encrypted connection between your machine and our web site.  
Your Internet browser is not able to support High Encryption, please contact your Helpdesk or System Administrator to apply 128-bit Encryption Pack on your Internet browser.

      <cfabort>
</cfif>

I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable

I am unaware how to resolve this issue, Do I need to something for the cg.https_keysize to return some value.?
Avatar of SidFishes
SidFishes
Flag of Canada image
I'm confused by this

"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string]  is empty as I dump the cgi variable"

CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.
Avatar of Dan Schimo
Dan Schimo
Flag of United States of America image

ASKER

Thank you for your input SidFishes . This code was running on some server, before it came to me. Yes, previously they had https: in the URL. Can you please let me know how to get the Https in the URL on this Current server.

CF 10
Local Box xp
IIS 5.1

site is currently running on localhost 127.0.0.1
ASKER CERTIFIED SOLUTION
Avatar of SidFishes
SidFishes
Flag of Canada image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial