nginx and ephemeral Diffie-Hellman keys
Jauder Ho
lists at ruby-forum.com
Sat Jun 14 01:24:04 MSD 2008
Igor Sysoev wrote:
>
> Yes, nginx allows to reuse sessions.
> However, you should use cache shared across workers:
> http://wiki.codemongers.com/NginxHttpSslModule#ssl_session_cache
Ah yes. I did not see that parameter previously. Enabled..
>> The other test case would be of premature close (if client closes
>> connection without sending alert), session must be abandoned and not
>> reused.
>
> No, nginx nevertheless allows to reuse these sessions,
> otherwise all MSIE connections will require SSL handshake.
I have not looked closely at the code but do you differentiate between
SSL and non SSL sessions? That could be one way of figuring which
session to dump.
--
Posted via http://www.ruby-forum.com/.
More information about the nginx
mailing list