Hello! it looks like my original EMail has been truncated, therefore, my main questions were missing.
I had already found option SSL_OP_NO_TICKET but I have some questions regarding SSL session tickets for which I have not found an answer yet: Is it OK to simply disable them or does this create some security risks? What is the advantage of using session tickets instead of session IDs? Can SSL session tickets be used with some kind of external cache? Thanks, Matthias Meixner -----Ursprüngliche Nachricht----- Von: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] Im Auftrag von Richard Könning Gesendet: Donnerstag, 27. Oktober 2011 18:12 An: openssl-users@openssl.org Betreff: Re: SSL session ID vs session ticket Am 27.10.2011 14:09, schrieb Matthias Meixner: > > Hello! > > When upgrading to version 0.9.8r my system stopped supporting session > resumption. > It looks like session tickets are the reason for this. > > I was using some external session cache to support session resumption > on a cluster of servers where it should be possible that each server > in the cluster can resume the SSL connection. With the upgrade to > version 0.9.8r this stopped working Try using something like SSL_CTX_set_options(ssl_ctx, SSL_OP_NO_TICKET); Ciao, Richard ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
