At 23:15 10/07/2006, you wrote: >Hi, > > >I have an application (huge, btw) and to encrypt the connections with >the database (which doesn't have native SSL) I implemented a SSH >tunneling using Synapse and cryptlib. > >We already have it in production with and average of 50 clients >simultaneouly connected, the SSH server is holding quite nicely. > >The real problem is with the clients: the connection unfortunaly has >become more than 2 times slower, which resulted in some complaints. Of >course it would be slower, but anyone has any idea on how to maybe speed >things up a bit? Maybe some connection setting that forces a faster >cryptographic algorithm to be used? I don't even know if there is any >way to speed it up. I will still look around, but I don't know the SSL >protocol that well. If anyone has any comment, I would appreciate it.
Compression is implemented in SSL 2 TLS using deflate algorithm, but, afaik, it's not used, default deflate compression is hardcoded as NULL. Check if cyptlib supports Data_Compression_Method negotitation and/or recompile it with FAST/BEST or any number between 0-9 deflate mode. Check : http://www.eventhelix.com/RealtimeMantra/Networking/SSL.pdf and RFC 3749 HTH ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ synalist-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/synalist-public
