[SGVLUG] Polling Web Sites
Christopher Smith
x at xman.org
Thu Nov 15 00:00:10 PST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
John E. Kreznar wrote:
> Christopher Smith <x at xman.org> writes:
>> The negotiation process in SSL does kind of assume a lot of round
>> trips between the two end points, and *that* might be the problem
>> you were getting at. For this kind of problem, that doesn't really
I realized upon reading this my language was confusing. "For this kind
of problem" is referring to the problem which originated the thread, not
the problem I was speculating you might have been referring to.
>> matter though. You could negotiate an initial session and then just
>> continue to use that session over multiple connections via TCP.
>
> I fear that server-side session expiration would often defeat this
> approach. How can one know how much time one has, or extend the time
> if required?
Generally for cryptographic purposes you don't want a session to extend
indefinitely anyway. It exposes you to too many security
vulnerabilities. In that case, it makes more sense to negotiate a new
session. For filling out forms, that's probably a good idea anyway.
- --Chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHO/yKOagjPOywMBARAgcgAKClp0DWDaCwDdUOtDms0VmRURoy8ACgrJd0
7w4IoysWpdExLd28ry12lL8=
=gLjR
-----END PGP SIGNATURE-----
More information about the SGVLUG
mailing list