On Mon, Mar 05, 2007 at 09:33:56PM +0100, Ruediger Pluem wrote:
> On 03/03/2007 05:47 AM, Karl Chen wrote:
> > present.  Also other issues like noise in the log file.  I've also
> > seen people complaining that "GET /" might incur the cost of
> > dynamic content generation for /.
> Hm. Just thinking loud. Can we avoid this if we replace GET / with OPTIONS /?

Doing "OPTIONS *" as Bill notes is probably the best option available 
for the dummy connection, though it will still be confusing for users 
(possible more confusing, since that request rarely if ever seen "in the 

Though it sounds tempting, negotiating real SSL sessions for the dummy 
connections is probably not going to fly: at least for the case where 
you don't have a shared session cache configured, the computational cost 
of negotiating N sessions is awfully painful on older hardware.  (though 
that kind of configuration is broken anyway)

In the case where you *do* have a (long-lived) shared session cache you 
need to be able to guarantee that the cache isn't spammed by N new 
sessions, and losing genuine client sessions.


Reply via email to