> From: Jonadan [mailto:[EMAIL PROTECTED] > Subject: Re: ssl.SessionId Cache keeps growing > > There are alternative designs than using sessions!
Not in this case. Don't confuse HTTPSession with SSLSession - the former is managed by Tomcat and can be avoided as you state, the latter is purely internal to SSL processing inside Sun's default JSSE provider and has to exist to support any SSL traffic. There are APIs available to control the size and lifetime of the SSLSessionId cache, but Tomcat does not at this point utilize them, and Sun's defaults appear to be infinity for both time and space. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
