Good morning,
@Andreas
Thank you for sharing these documents.
I had already read the one from Tim Taubert and had the same concern about
using TLS/SSL Tickets.
Is it a good thing or not?
-Original Message-
From: nginx [mailto:nginx-boun...@nginx.org] On Behalf Of A. Schulze
Sent: lundi 11
Hi,
@B.R.
Not really…
The only information for ssl_session_timout is “Specifies a time during which a
client may reuse the session parameters stored in a cache.” It does not say
anything about purging the TLS/SSL Cache which is my concern here.
I have read that invalidating a TLS/SSL Sessi
00545/ch04.html#TLS_RESUME>
about that in the Web tubes.
Why not sticking with those defaults (or even set ssl_session_cache to off to
be absolutely clear)?
---
B. R.
On Mon, Apr 11, 2016 at 10:41 AM, Arnaud Van der Vorst mailto:sbx...@icloud.com> > wrote:
Hi,
My name is Arn
Hi,
My name is Arnaud and I am new to the list.
I would like to know if NGINX is using any automatic purge mechanism for its
TLS/SSL Cache configured using the following directives:
ssl_session_timeout 10m;
ssl_session_cache shared:SSL:10m;
I understand that a daily purge of TLS/SSL C
