httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andrew Oliver <acoli...@gmail.com>
Subject Re: Tracking discussion for Patch 49717 - adds SSLTimeout
Date Wed, 18 Aug 2010 20:53:15 GMT
Sorry I had it on my list of todos to follow up on this.  On testing
mod_reqtimeout accomplishes the same thing.  So this can be withdrawn
once I'm not connected through my cell phone tether or a hotel network
I'll change the ticket.  It should probably be maintained in patch
form for those who want this on 2.0x on AIX (for example ;-) ).

-Andy

On Wed, Aug 18, 2010 at 4:49 PM, Stefan Fritsch <sf@sfritsch.de> wrote:
> On Friday 06 August 2010, Jeff Trawick wrote:
>> On Fri, Aug 6, 2010 at 12:26 PM, Andrew Oliver <acoliver@gmail.com>
> wrote:
>> > This patch
>> > https://issues.apache.org/bugzilla/show_bug.cgi?id=49717 adds an
>> > SSLTimeout directive which is a timeout on the initial ssl
>> > handshake separate from the general Timeout.  See the issue
>> > description for a bit more detail.
>> >
>> > Why should this not be added?
>> > and/or Why should this be added?
>> > How should it be improved?
>>
>> I wonder if there is any way for mod_reqtimeout to handle this
>> capability??
>
> From the PR: "This allows for configurations where more client latency
> is allowed for established ssl connections but not for initial session
> setup."
>
> This seems to target the same problem as mod_reqtimeout's header
> timeout, which limits the total time for receiving all request headers
> (including the initial SSL handshake). Andrew, would that fit your
> needs? If no, why not?
>
> Cheers,
> Stefan
>
> PS: 2.2.x's mod_reqtimeout is buggy, use the version from trunk or
> wait for 2.2.17.
>

Mime
View raw message