apache2 - SSLSessionCache running but not working
68
Solution 1
I'm not familiar with Debian Squeeze, but here are somethings to try:
Try connecting using openssl with the reconnect
flag which use the same session 5 times:
openssl s_client -connect your.server.com:443 -state -reconnect
and see what you get. Look for Session-ID
& "Reused."
Other things to rule out:
- A shot in the dark, but can you replace
${APACHE_RUN_DIR}
with the actual path and see if that helps ... ? - Rule out write permissions (unlikely, but still) to the
ssl_*
files you note above by the user running apache.
Solution 2
Mounting tmpfs on /dev/shm and replacing ${APACHE_RUN_DIR} with /dev/shm/apache in fixed it for me:
grep shm /etc/apache2/mods-enabled/ssl.conf
#SSLSessionCache shmcb:${APACHE_RUN_DIR}/ssl_scache(512000)
SSLSessionCache shmcb:/dev/shm/apache_ssl_scache(512000)
Related videos on Youtube
Author by
Sefam
Updated on September 18, 2022Comments
-
Sefam almost 2 years
I have a language JSON file containing the text of each page on my website. So to fetch the title of the page, I'll do something like
{{ translation.page1.title }}
In order to fetch the title for page 1.
I already have a page variable that tells me the name of the page, I was wondering if it was possible to do something to avoid having a giant if statement for each page such as:
{{ translation.{{ page }}.title }}
I've looked through the twig doc and I have no idea.
-
DarkBee over 7 years
{{ translation[page].title }}
should work
-
-
Janning about 12 yearsAs noted apache writes a file into the directory when I use dbm: as my sessionCache. So ${APACHE_RUN_DIR} and write permissions shpouldn't be the problem. I can't test it with openssl as i use a pcks#11 token for my client cert, can't get it to work on command line with openssl
-
lex82 about 9 yearsI have the same problem on a windows machine. I tried to connect via openssl as suggested and I actually see that the same Session-ID is used for all reconnects. It also says: "Reused, TLSv1/SSLv3" at the beginning. However, this even happens when I remove the SSLSessionCache line from my apache config. Any ideas what this means?
-
codenamezero almost 8 yearsthat didn't work for me either.
-
codenamezero almost 8 yearsBeen a year, anyone found a solution to this?