Angel_Lopez_116
Apr 15, 2014Altostratus
How can I check for HelloRequest SSL messages
Get the latest updates on how F5 mitigates Heartbleed
Hi,
I'd like to be able to detect a HelloRequest message in the dialogue between a client and the BIG-IP (I'd like who initiate the ssl renegotiation). I didn't find any SSL event that could be useful for this but I guess that maybe I could check for this messages in the TCP flow using a "binary scan" as in the latest iRules published here that check for the heartbeat messages of the heartbleed attack.
How could I do it something like that? any reference example to study it?
Thanks!