We are running Sun ONE Web server (similar to Apache) and CFMX 6.1. Sun ONE has a feature where you can show an error message if the Web browser does not support 128-bit SSL. With CF5 this feature worked fine. With CFMX, however, the restriction only applies to images, html files, and style sheets. All the ColdFusion pages make it through the restriction because there is a "jrunfilter" (like and ISAPI filter) which captures all the ColdFusion requests before the Web server SSL check is reached.
So, can anyone suggest the preferred way of enforcing 128-bit SSL throughout an entire ColdFusion site that runs using an Apache-like Web server? If I take out the jrunfilter line in the config file, and rely on the file extensions to pass requests to ColdFusion, it works. However, it is my understanding that it is desirable to leave the jrunfilter in place. I could also have the developer add a check of the CGI variable in Application.cfm. I am thinking there might be some setting in one of these XML files where I can tell JRun to throw an error if the 128-bit rule is not met. Thank you, Mike Chabot ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:218045 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
