I think you are requesting a way to have a browser establish an SSL
connection using a previous SSL session, but use a different host and/or
port number. Apparently the new host/port is actually at the same site
and can share the session data (cryptographic keys in particular).
There is no mechanism to indicate that the browser should do this. The
session information for SSL is typically tied to a particular host an
port number. New connections to other URLs will always generate a new
session id.
Terry
Jack Varga wrote:
> I hope this is the right place to ask. If not, please redirect me.
>
> SSL includes a provision for reestablishing SSL sessions over a new socket
> by simply enabling session resumption on the server, and having the client
> send a new ClientHello that includes the existing ssl session_id.
>
> When the client is a browser, (i.e., Mozzilla), how can I force the browser
> to do this?
>
> Is there something I can embed in a server response (i.e., html) to tell
> the the browser to use the same session_id, but direct it to a different
> URL?
>
> TIA
> --
> Jack Varga SMTS 303.413.8800 x1082 wk
> [EMAIL PROTECTED]
> Boulder, Colorado
