Hack to try TLS tickets resume after server reload

Just add some prints and a sleep to give time to reload apache web server and test if SSL session tickets are valid after reload. Maybe a reload is enough and no restart is needed to restrict the PFS window :)
rata · Sep 23, 2014 · 37a56bf · 37a56bf
1 parent ad8e3f1
commit 37a56bf
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/plugins/PluginSessionResumption.py b/plugins/PluginSessionResumption.py
@@ -243,6 +243,10 @@ def _resume_with_session_ticket(self, target):
             return False, 'TLS ticket not assigned'
 
         # Try to resume that session using the TLS ticket
+        print "Trying to resume TLS tickets, waiting 10s"
+        import time
+        time.sleep(10)
+        print "going for it!"
         session2 = self._resume_ssl_session(target, session1, tlsTicket=True)
         try: # Recover the TLS ticket
             session2_tls_ticket = self._extract_tls_session_ticket(session2)