Distributed SSL session cache

Piotr Sikora piotr at cloudflare.com
Sat Sep 28 10:03:54 UTC 2013


Hi,

> Ok, made some kind of patch, testing it now:
> https://github.com/kyprizel/nginx_ssl_ticket_keys
>
> Not sure about server behaviour in case of invalid key file - should it be
> emergency or alert only.

I've just pushed code that's been sitting in my tree for the last few months:
http://mailman.nginx.org/pipermail/nginx-devel/2013-September/004290.html

It's rather thoroughly tested, but it handles key rollover in
different fashion than your code (multiple files with a single session
key each vs single file with multiple session keys).

Hopefully, it will be helpful.

Best regards,
Piotr Sikora



More information about the nginx-devel mailing list