https://bugzilla.wikimedia.org/show_bug.cgi?id=33890
--- Comment #27 from Gabriel Wicke <[email protected]> --- @Faidon: I agree that a wider discussion is needed to come to a conclusion & make a plan / agree on priorities. Lets use this bug to collect more information for now to inform that discussion. Nginx lets you specific keepalive timeouts separately for HTTPS? vs. SPDY connections. See keepalive_timeout and spdy_keepalive_timeout. With only a single connection used for SPDY the keepalive can be set significantly higher than the 65s default for HTTPS? without resulting in an excessive number of connections. Combined with around 65% of requests already supporting SPDY [1] this might reduce the need for SSL session caching somewhat. Also potentially relevant is http://tools.ietf.org/html/rfc5077, with an implementation discussed in http://vincent.bernat.im/en/blog/2011-ssl-session-reuse-rfc5077.html#sharing-tickets. Sadly Safari and old IE versions don't support it, with Safari being the main non-SPDY hold-out. According to https://www.ssllabs.com/ssltest/viewClient.html?name=IE&version=11&platform=Win%208.1 IE 11 does support session tickets. [1]: http://caniuse.com/spdy -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
