tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: enforcing SSL only for external clients
Date Wed, 08 Dec 2010 22:40:55 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ajay,

On 12/8/2010 5:24 PM, Aggarwal, Ajay wrote:
> Most of the application will be over SSL for external clients. There
> is one part where the clients may upload or download a huge file over
> HTTP which I don't want to go through SSL. I am thinking
> uploading/downloading these huge files over SSL will create lot of
> stress on the server.

FWIW, it's the SSL handshake that is most stressful part of the
conversation. Once that's completed, the encryption on both sides is
symmetric and fairly low-stress on the connection.

I encourage you to benchmark your app under these conditions. It sounds
like you are making performance decisions without any data to back them up.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk0ACXcACgkQ9CaO5/Lv0PAfoQCgsCjgE9822FdGNbHY5HQ9Xoyw
nz4An2YqcUk6m2XQcs4ZpAaWzoDm/WgW
=4dCx
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message