Commit fd4dedfe authored by David Johnson's avatar David Johnson

Adjust client SSL timeout and default again.

Bump the SSL accept phase to 3 seconds to be a tad more gracious to
legitimately-slow clients.  Also restore the default SSL timeout to None
(i.e. whatever the underlying default timeout is).
parent c35ca30e
......@@ -69,9 +69,9 @@ ca_cert = "@prefix@/etc/emulab.pem"
# Set a timeout for the SSL_accept phase of the client session setup.
# This allows us to not block the main thread indefinitely if a non-SSL
# or malicious client connects to us and says nothing.
SSL_CLIENT_ACCEPT_TIMEOUT = 2
SSL_CLIENT_ACCEPT_TIMEOUT = 3
# Set a timeout that is used for the client socket *after* SSL accept.
SSL_CLIENT_REQUEST_TIMEOUT = 30
SSL_CLIENT_REQUEST_TIMEOUT = -1.0
#
# By default, run a wrapper class that includes all off the modules.
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment