On Tue, Nov 08, 2005 at 07:10:31AM -0800, imana sakki wrote:
> hello, I thank you for your answers, I read in rfc2246 that the lifetime
> for session-ID is 24 houres; is there difference between this time and
> the time that you say(300 sec)?
The lifetime is whatever your application chooses to set it to. For Web
servers it is typically 5 minutes. For SMTP servers, 1 hour seems to be
popular. Please read the manual pages and/or Eric Rescorla's book:
"SSL and TLS: Designing and Building Secure Systems"
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
