Cindy_127211
Feb 13, 2006Nimbostratus
SSL Redirect Rule results in unlimited GETS occurring
I am using the following redirect rule to detect SSL certificate version and number of encryption bits. The match seems to work as expected; however, the results are not at all what I would expect. I can see in the HTTP log and via a tcpdump that instead of one GET to the page, the same 'GET' occurs unlimited number of times (and, doesn't stop until I close the browser. Following is the rule that I am using:
rule SSLV2_Encrypt_ACS_sbox {
when HTTP_REQUEST {
HTTP::header insert "Custom" "amc:443"
HTTP::header insert "CipherVersion" [SSL::cipher version]
HTTP::header insert "CipherBits" [SSL::cipher bits]
if { ![matchclass [SSL::cipher version] equals $::CipherVersion] and [SSL::ciphe
r bits] > 127 } {
use pool acs80sbox
} elseif { [HTTP::uri] starts_with "/encryptcode/" }
{
pool acs80sbox }
else {
HTTP::redirect https://[HTTP::host]/encryptcode/encryption_notice.jsp}
}
}
For instance, if I enter the following command:
https://www.sbox.americancentury.com/login/LoginServlet
All I see in the HTTP logs is multiple 'GETS' to the LoginServlet page. What am I doing wrong here?