zafer
Dec 28, 2009Nimbostratus
InsertCertInServerHeaders
Hello
i tested this rule, but it does not check empty Certificate from IE.
i tested with Firefox and i try send Empty certificate to the vip, Redirect works properly but when i tested with IE i can access the home page.its security hole
note: we need add this into the iRule
} elseif { $ssl_errstr2 eq "" } {
HTTP::redirect "http://192.168.0.64/empty.html"
log local0. "client: [IP::remote_addr]:[TCP::remote_port] Empty certificate"
regards zafer