Forum Discussion
Yann_Desmarest
Cirrus
Hi,
What kind of encryption provide and encrypted string starting with "!"
If you are using hash or AES, you should identify an encrypted string by the end of the string ==
I suppose that the irule should then be :
when HTTP_RESPONSE {
Loop through each cookie by name
foreach cookie [HTTP::cookie names] {
set cookievalue [HTTP::cookie value $cookie]
if { !($cookievalue ends_with "==") } {
Log the cookie name and value
log local0. "Virtual Server: [virtual name], Cookie name: $cookie, Unencrypted Cookie"
}
}
}
Kadall_14553
Jun 03, 2016Nimbostratus
I was using the http profile to encrypt cookies. The value did also have the "==" at the end. I might switch to this though or maybe combine as the more characters to match the better for less false positives. Thx!