On Fri, Feb 19, 1999, Alfredo Raul Pena wrote:
>[...]
> [19/Feb/1999 10:40:11] [trace] Inter-Process Session Cache: request=SET
> id=5080C88552F24FA5D2F292412066E77B319DFC0BEE61D568303990A48A50370C timeout=2795s
> (session caching)
>[...]
> When I click reload, the following happens:
>
>[...]
> [19/Feb/1999 10:41:06] [trace] SSLeay: Handshake: start
> [19/Feb/1999 10:41:06] [trace] Inter-Process Session Cache: request=GET status=FOUND
> id=5080C88552F24FA5D2F292412066E77B319DFC0BEE61D568303990A48A50370C (session reuse)
>[...]
> [19/Feb/1999 10:41:06] [info] Requesting connection re-negotiation
>[...]
> and Netscape ask me once again for the certificate with the "Select a certificate"
> dialog box. Clicking Continue:
>[...]
> This happens again and again....
> I bet the problem is in the re-negotiation stuff....
Ohhh... interesting situation. Although Netscape remembers the re-negotiated
session and comes back with it, it seems like I've to explicitly add some code
to check whether the current re-configured per-directory context is already
fullfilled by the established session. Hmmm... a very complicated thing,
because of possible security problems. One have to be very conservative here.
The renegotation code of mod_ssl already is very conservative, actually in
your case _too_ conservative ;-) I'll investigate...
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
