Ah, big difference. It is running much, much faster, and now runs pretty
much even with the apache/mod_ssl server. Thanks Geoff.
Chris
On Monday 09 July 2001 11:17 am, you wrote:
> On Mon, 9 Jul 2001, C. Gould wrote:
> > I've created some server code based on openssl 0.9.6 that seems to be
> > running fine. The only problem I've encountered is the noticible
> > difference between the speed of my code running on a P866 and the
speed
> > of mod_ssl code running on another P833. Both of these machines are
> > running linux-mandrake 8.
> >
> > Using Geoff Thorpe's swamp utility my code handles around 12
transactions
> > in a second. To my surprise, the mod_ssl/openssl/apache server does
> > around 18-20 transactions in a second. Is such a large difference in
> > speed common? Are there steps I could have used to increase the speed
> > during the configuration of openssl.
> >
> > Please share your experiences if you get a chance.
>
> I can guess what the problem is ... did you check the notes in the
'swamp'
> package? I recall sticking a note there about what I think this is -
> ephemeral cipher suites. I wouldn't be surprised if adding the "-cipher
> RC4-MD5" command-line switch to swamp speeds things up a bit??
>
> If that is the problem, the moral of the story is simple - if you simply
> *must* have the server go faster than EDH cipher-suites allow, disable
EDH
> cipher-suites on the web server (see mod_ssl's manual). Bear in mind
also
> however that those numbers are all *new* SSL sessions - try using the
> "-session" switch to generate test traffic that also uses resumes to see
> how the system profiles as a result.
>
> Cheers,
> Geoff
>
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
