https and random numbers

bobykus

Well-Known Member
#1
Readin

https://httpd.apache.org/docs/2.4/ssl/ssl_faq.html


found this

Why do HTTPS connections to my server sometimes take up to 30 seconds to establish a connection?
This is usually caused by a /dev/random device for SSLRandomSeed which blocks the read(2) call until enough entropy is available to service the request. More information is available in the reference manual for theSSLRandomSeed directive.

How litespeed deal with such situation? It is possible to use the other then /dev/random source of entropy?
In 5.1.x litespeed "SSL Global Settings" what "SSL Hardware Accelerator" means?
 
L

Long

Guest
#2
Hi,
In lsws we don't use /dev/random, but another source which is non-blocking.
About the SSL Hardware Accelerator, nowadays we don't use it much, since most cpus today already have internal AES.
 
Top