request_time much slower than upstream_response_time
Rt Ibmer
rtibmx at yahoo.com
Tue Jun 24 04:57:04 MSD 2008
> > > You may also try to use 56-bit and 128-bit
> ciphers first:
> > >
> > > ssl_ciphers DES-CBC-SHA:RC4-MD5:RC4-SHA:AES128-SHA:DES-CBC3-SHA;
>
> > So should I replace that line with what you put above
> or just preappend those settings to my existing line?
>
> You already have the same ciphers.
Sorry I pasted in the wrong line.
What I meant to say is that currently I have this:
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
So should I just replace that with this:
ssl_ciphers DES-CBC-SHA:RC4-MD5:RC4-SHA:AES128-SHA:DES-CBC3-SHA;
Or should I append yours in the front of my existing one, to come up with this:
ssl_ciphers DES-CBC-SHA:RC4-MD5:RC4-SHA:AES128-SHA:DES-CBC3-SHA:ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
And I assume I should leave this prefer_server_ciphers as is:
ssl_prefer_server_ciphers on;
Lastly, can you think of anything else we have not covered that can help speed the ssl handshake process?
Thanks again.
More information about the nginx
mailing list