Michael Str�der wrote:
>Eric Greenberg wrote:
>
>>Correlating the IP address and session ID is a reasonable thing to do in my
>>opinion. If they do not match you should merely request that the client
>>reauthenticate themselves at which point you can establish a new session ID.
>>
>
>How can a simple CGI-BIN obtain the SSL session ID from the web
>server? Is there an env var for this?
>
>Ciao, Michael.
>
Michael,
As I replied in private, the application I have is not a cgi program
but a web server with customized feature for an embedded applications.
Yannick Koehler
