For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Evan_Thompson's avatar
Evan_Thompson
Icon for Cirrus rankCirrus
May 20, 2011

Using SSL::sessionid in SSLv2

Hi, everyone.     If someone has clarification, please tell me.       We will use SSL::sessionid in communication or SSLv2.   As sample, we test following irule.   But result have no...
application delivery
dev
devops
iRules
boneyard's avatar
boneyard
Icon for MVP rankMVP
Mar 08, 2013

old thread, but perhaps interesting, while investigating a session ID issue i saw this: SSL stickiness is supported only on SSLv3 and TLSv1 sessions. The reason for this is that SSLv2 places the session ID within the encrypted data,

 

source: http://docwiki.cisco.com/wiki/Secure_Sockets_Layer_Persistence_Configuration_Example

 

not sure if it is true, but it might give some extra background to this.