How to detect whether or not a browser support 128 encryption? The question had been
posted here several times before. No one had been able to provide a working answer.
According to Article 12017 from Allaire knowledge base,
"req.getHearder("HTTPS_SECRETSIZE") is the client encrption key size under Netscape
Enterprise Server. It is not true for IIS 4.0 (that value returns null). So I assume
the way to detect browser's encrption key size is server dependent. I have tested the
value of following headers in IIS 4.0:
HTTPS_SECRETKEYSIZE=1024
HTTPS_KEYSIZE=128
SSL_CIPHER_USEKEYSIZE=null
HTTPS_KEYSIZE returns 128 even with 40-bit browser, because it is the server's key
size!
I used req.getHeaderNames() collected the name and value of all headers from a https
quest, but nothing is HTTPS or SSL related.
I do know some peole use .ASP file to detect the browser's encryption level. If that
info is not in the header for IIS, where could it be? Any comment is appreciated.
Thanks.
JJ Fu
SUN Certified Java programmer
Internet Developer
Compass Bank
(205)558-5255
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
Some relevant FAQs on JSP/Servlets can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
