Skip to content

Instantly share code, notes, and snippets.

@ivanionut

ivanionut/BlockedCookies.cfm

Forked from JamoCA/BlockedCookies.cfm
Last active August 29, 2015 14:16
Show Gist options
  • Save ivanionut/00d01e09dbab1d12e859 to your computer and use it in GitHub Desktop.
Save ivanionut/00d01e09dbab1d12e859 to your computer and use it in GitHub Desktop.
Download ZIP
Block access to ColdFusion web application based on bogus, pre-existing cookies that aren't used.
Raw
BlockedCookies.cfm
<cfscript>
BadCookieList = [
"ASP.NET_SessionID",
"ISFIRSTVISIT",
"PHPSESSID",
"REMEMBERCOUNTRY",
"RESOURCEINFO",
"SESSIONS",
"SS_MID",
"USERINFO",
"WEB",
"WebPersCookie",
"bb_lastactivity",
"bb_lastvisit",
"bb_sessionhash",
"negotiation",
"osCsid",
"ss_lastvisit",
"siteCookie"];
for (i=1;i LTE ArrayLen(BadCookieList); i=i+1) {
if (StructKeyExists(Cookie, BadCookieList[i])){
pc = getpagecontext().getresponse();
pc.getresponse().setstatus(503, 'Service Unavailable');
abort;
}
}
</cfscript>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment