On Tue, Jan 18, 2000, Joaquim Garcia i Ortells wrote:
> after installing Apache(Apache 1.3.9), mod_ssl,( mod_ssl 2.4.10) on
> a Solaris 2.6 i activate the client certification and the problem was
> that my server turn so slowly.
>
> The problem is that my server request the certificate many times no
> only on the inicial step of negotiation.
> Can anybody help me to configure the apache Server for no to ask so
> many times the client certificate?
> my httpd.conf is :
First, I don't see a SSLSessioCache directive in your config. Without
this, it's clear that the server renegotiated the certs every time, of
course. Second, if your connections are slow, perhaps you're using also
a SSLRandSeed /dev/random somewhere in your remaining config part and
/dev/random is a blocking device on your platform. Then use /dev/urandom
(if available) or the built-in random source.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
