-----Original Message-----
From: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Thursday, August 24, 2000 6:53 AM
Subject: using ssl in http protocol
>one question:
>http is a connectionless protocol(at least 1.0 is, and i don't know if
there are some implementations of http1.1). if we want to use ssl in http to
acquire secure connection, then, does it means we have to take the full
handshake for each connection(each request and reply)? if not, how they
implemented it then? are there some little source examples here(both client
and server)?
>Du Chunyan
[Moved to openssl-users]
If what you mean by a "connectionless" protocol is that there is no
mechanism for persistent connections, that is incorrect. HTTP/1.0 does
support persistent connections (using the Connection: Keep-Alive header) and
HTTP/1.1 does it by default.
Hence, if you are communicating to the same HTTPS server, upon a keep-alive
request, the server in most cases will oblige that request and keep the
connection open. However, that is the prerogative of the server.
Arun.
"If you torture data long enough, it will admit anything you want.."
****************************************************************
This message is for the named person(s) use only. It may contain
confidential, proprietary or legally privileged information. No
confidentiality or privilege is waived or lost by any mistransmission.
If you receive this message in error, please immediately delete it and
all copies of it from your system, destroy any hard copies of it and
notify the sender. You must not, directly or indirectly, use, disclose,
distribute, print, or copy any part of this message if you are not the
intended recipient. SPEEDERA NETWORKS, INC. reserves the right to
monitor all e-mail communications through its network.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
