nginx and ephemeral Diffie-Hellman keys

Jauder Ho lists at
Sat Jun 14 01:24:04 MSD 2008

Igor Sysoev wrote:

> Yes, nginx allows to reuse sessions.
> However, you should use cache shared across workers:

Ah yes. I did not see that parameter previously. Enabled..

>> The other test case would be of premature close (if client closes 
>> connection without sending alert), session must be abandoned and not 
>> reused.
> No, nginx nevertheless allows to reuse these sessions,
> otherwise all MSIE connections will require SSL handshake.

I have not looked closely at the code but do you differentiate between 
SSL and non SSL sessions? That could be one way of figuring which 
session to dump.

Posted via

More information about the nginx mailing list