Threaded Mode | Linear Mode

***ProxRocks*** · Apr. 10, 2009, 01:36 PM

eureka! found it... (i think...)

in regards to this filter, Set-Cookie: 7 Strip "Secure" if Half-SSL 9.03.14 (cch!) [sd] (d.1) (In), does it have, or any header filter, for that matter, does it have a "character limit" ?

i have a "; secure" that is NOT being stripped...
here's the set-cookie log-line:

Code:

set-cookie: SMSESSION=+qNnFhO437GNgIAbdCaXT8X8V0hIFQ1KTrAlUuDVgChhN4ePA

GfAiKaAsE8WDQ5rRQ2oLmz0CN7kxSg4mWFzmM83zyAP//1ut2tOMFc3h5wH

+TQv57zY1eKlrPbnmB2hAQeI9faPl6jtulJSFVhPbLFWJhTAsMavZe6BKZbzClp

xUZ5dUF2ksETKLzDIfJwpHDRNtal+nPcSYButOjPb57V+4OQi9+7G6JjKgZVID

Q/TG8tPoIt30rn2UlgCmtYFgsKGIcMEbmmpt71F1yW62jf8Ig+7NUJdSW7oiY

OD+lxn2HA8qHHM1KVklUPTUYt/o3rd5LItBLb+mnkrsxyyL6cH4Dv8sRtoxNeiA

kYA6EZR72wpy1nKkCf3neCF+hNjhCIAZoOk/j3FqRYqqBkhhn9X+4VKB+aG5I

rlmWkPI7WRXiDf3+OQGIFUfDI123juKONKISLQIYpqsEdTWTUtOXZEw3iOzCf

KNEVJIXwpUs7zHKMOlA14G5dEjCpJ4EnjUj91WojnzPV2+8ly+bXKl6q98ZZQA

Blr7nCnVMUrnpf61nw07givyT46uLrmgGkYJpT06dCYBSyoemypBIWoLWIWip

wVc8gjoUc5BvU9//P5n1VtkYQ+IQEyQC0JzT5n4APxNRL7hAJKNg3YTiXV3C

wKsMZRo1Dax2gN6ZJI0atpYx4Vb8/B8aY5uQPnmsiCOowZK5yfopVxj/5q1gd

tIEJ2gHUk4+Ioq5H/3prg1cE5wZReE8YEgz+m9d330UPOtIs05o/a3wzXtjgxv

2D4xwvO1QaNDOg8m7ocfv6CPg+Ve8gZkDQa9kqef8zqkzoTP2vAPoBI2inAo

cVbEBGc51EHH0EesZl5; path=/; domain=.chase.com; secure

(with spaces added to prevent horizontal scroll...)

the question is this - is it that HUGE smsession string that's preventing the tail-end secure from being stripped ?