On Mon, Mar 05, 2007 at 09:33:56PM +0100, Ruediger Pluem wrote:
> On 03/03/2007 05:47 AM, Karl Chen wrote:
> > present. Also other issues like noise in the log file. I've also
> > seen people complaining that "GET /" might incur the cost of
> > dynamic content generation for /.
> Hm. Just thinking loud. Can we avoid this if we replace GET / with OPTIONS /?
Doing "OPTIONS *" as Bill notes is probably the best option available
for the dummy connection, though it will still be confusing for users
(possible more confusing, since that request rarely if ever seen "in the
Though it sounds tempting, negotiating real SSL sessions for the dummy
connections is probably not going to fly: at least for the case where
you don't have a shared session cache configured, the computational cost
of negotiating N sessions is awfully painful on older hardware. (though
that kind of configuration is broken anyway)
In the case where you *do* have a (long-lived) shared session cache you
need to be able to guarantee that the cache isn't spammed by N new
sessions, and losing genuine client sessions.