SSL_SESSION_ID does not appear HTTP header in first access

Solution Unverified - Updated -

Issue

We're trying to use the mod_ssl environment variable %{SSL_SESSION_ID}s and put it in the response headers. So we put the following line into our httpd configuration file:-

Header set SSL_SESSION_ID "%{SSL_SESSION_ID}s"

Also, according to 1, we configured SSL session cache DB. However, I still can't consistently get the session ID in the headers. Empirically, it appears that SSL_SESSION_ID in the headers is null on the first access within the SSL session and it's only being put into the headers on the second call.

  1. https://access.redhat.com/site/solutions/457903 ↩︎

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content