I have noticed that much of the overhead of an openssl session is during
the connection stage. Is it possible for me to use only one SSL_session
for every connection that which I accept. This will make it easier to
crack a session, right? Will it also make the connection overhead less?
If this solution makes sense, how do I go about it? Do I create a new
session with SSL_SESSION_new() and then use SSL_set_session() after
calling SSL_accept. How do the fields of this session get filled? Will
this actually save connection overhead?
Thanks!
-tim
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
