What would the ramifications be of disabling keep alives altogether? I know that I am having trouble with POSTed form data from both Netscape and MSIE (I am currently collecting information on the problem).
Setting the recommended SetEnvIf for MSIE solved a large percentage of the problem (failure rate went from 100% to 5-10%) but am still seeing problems. Tim -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Friday, October 12, 2001 9:26 AM To: [EMAIL PROTECTED] Subject: RE: Keepalives >-----Original Message----- >From: Eric Rescorla [mailto:[EMAIL PROTECTED]] >Sent: 12 October 2001 16:06 >To: [EMAIL PROTECTED] >Subject: Keepalives > > >The mod_ssl conf file says: > ># Notice: Most problems of broken clients are also related >to the HTTP ># keep-alive facility, so you usually additionally want to disable ># keep-alive for those clients, too. Use variable >"nokeepalive" for this. >SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown >SetEnvIf User-Agent ".*Mozilla.*" nokeepalive > >Does anyone here know what exactly goes wrong if you use keepalive >with SSL and clients? AFAIK there's nothing in the standard that >implies this should be a problem. > >-Ekr I believe that is because the client is unable to either make or maintain a secure connection due to inadequacies in the way that IE handles keepalive. I'm not so sure about Mozilla though. I've been on this list a long time and I don't recall as many issues with other browsers as there have been with IE (even allowing for my obvious bias), so it's definitely not an issue with the SSL/TLS standards. IIRC IE5 onwards is a lot better (hence my recent post about dropping support for IE4 and below). I haven't even looked at IE6. - John Airey Internet systems support officer, ITCSD, Royal National Institute for the Blind, Bakewell Road, Peterborough PE2 6XU, Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] - NOTICE: The information contained in this email and any attachments is confidential and may be legally privileged. If you are not the intended recipient you are hereby notified that you must not use, disclose, distribute, copy, print or rely on this email's content. If you are not the intended recipient, please notify the sender immediately and then delete the email and any attachments from your system. RNIB has made strenuous efforts to ensure that emails and any attachments generated by its staff are free from viruses. However, it cannot accept any responsibility for any viruses which are transmitted. We therefore recommend you scan all attachments. Please note that the statements and views expressed in this email and any attachments are those of the author and do not necessarily represent those of RNIB. RNIB Registered Charity Number: 226227 Website: http://www.rnib.org.uk ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
