"Gordon P. Oliver" <[EMAIL PROTECTED]> writes:
>I seem to have a problem with using mod ssl and
> tomcat. I get an IOException, and the file is not
> sent (note that this is not the common IOException
> that is harmless). The combinations that work/fail.
>
> 6M file w/o SSL = no problem
Fixed my own problem,
The ssl_engine_log was taking 2-3 seconds when generating entropy. I
changed the mod_ssl configuration in httpd.conf so that
sslrandomseed came from /dev/urandom instead of builtin.
This seems to have fixed the problem.
On Fri, 31 May 2002, Mikel Waxler wrote:
> Note: PL
Hi.
I seem to have a problem with using mod ssl and
tomcat. I get an IOException, and the file is not
sent (note that this is not the common IOException
that is harmless). The combinations that work/fail.
6M file w/o SSL = no problem
6M file w/ SSL = connection reset
4 byte fil
On Fri, 31 May 2002, Geoff Thorpe wrote:
> oh yeah, there's also that security problem with modssl that I mentioned
> ages ago - AFAIK this still hasn't been changed in modssl and *may* not
> yet have changed in apache 2.0 either. Ralf or David, please correct me
> if I'm wrong;
> http://marc.the
Note: PLease CC replies. I am posting from off list.
I'm working on a FreeBSD 4.4 machine running Apache with mod_ssl.
Apache/1.3.22 (Unix)
OpenSSL 0.9.6a 5 Apr 2001
mod_ssl-2.8.5-1.3.22
The server also does mysql and some other services. It is a Xeon 750 with 1gb of ram.
When the link to ssl i
Hi there,
On Thu, 30 May 2002, Cliff Woolley wrote:
> On Thu, 30 May 2002, Patrick Dionisio wrote:
>
> > Currently, I have a client script that generates n
> > number of requests to the apache server. The page it
> > requests is a static page. With SSL turned on, I'm
> > only able to get at mo
Hi,
generally speaking: encryption of data (which SSL does in comparison to not using SSL)
of course cost computing time. Thats the reason why you'll get less processed requests
when using SSL. Thats the price for having secure data transfer, which does not mean
that you should consider turnin
> (but I don't want to start
> another discussion on that either!)
>
Dang! Everyones killing some of my better discussion topics!
Ya'll have a great weekend folks.
Thanks,
Ron DuFresne
--
~~
admin & senior security consultant: sysinfo.com
> -Original Message-
> From: Cliff Woolley [mailto:[EMAIL PROTECTED]]
> Sent: 30 May 2002 23:59
> To: [EMAIL PROTECTED]
> Subject: Re: Performance Tuning on Apache 1.3.24 with mod_ssl 2.8.8
>
>
> On Thu, 30 May 2002, Patrick Dionisio wrote:
>
> > Currently, I have a client script that g
