On 04 Mar 2010, at 2:02 AM, William A. Rowe Jr. wrote:
If it causes the connection to hang, it is no different to just
telnetting to the server and talking enough of the protocol to keep
the
connection open for the full Timeout.
Oh no - this is far more intensive; due to the cpu overhead of SSL
handshaking.
But as long as your server is accepting https: connections...
And the only way such a connection is possible is if the admin has
explicitly enabled https connections, in which case there is no
additional risk over the risk the admin already faces by virtue of
simply being plugged into the net.
Regards,
Graham
--