[Mono-bugs] [Bug 78075][Nor] Changed - Mono SSL stack
performance/tuning issues
bugzilla-daemon at bugzilla.ximian.com
bugzilla-daemon at bugzilla.ximian.com
Wed Apr 12 16:55:20 EDT 2006
Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.
Changed by sebastien at ximian.com.
http://bugzilla.ximian.com/show_bug.cgi?id=78075
--- shadow/78075 2006-04-12 16:31:34.000000000 -0400
+++ shadow/78075.tmp.29357 2006-04-12 16:55:20.000000000 -0400
@@ -1,12 +1,12 @@
Bug#: 78075
Product: Mono: Class Libraries
Version: 1.1
OS: unknown
OS Details:
-Status: REOPENED
+Status: NEEDINFO
Resolution:
Severity: Unknown
Priority: Normal
Component: Mono.Security
AssignedTo: miguel at ximian.com
ReportedBy: naresh at ximian.com
@@ -252,6 +252,22 @@
likely that I was using a 256 bit key (I don't know how to check). We
can try to knock down our encryption to 128 bit, but I still think
this needs fixed.
------- Additional Comments From james at ximian.com 2006-04-12 16:31 -------
Sorry, not 33 times slower. Like 13 times slower or something :)
+
+------- Additional Comments From sebastien at ximian.com 2006-04-12 16:55 -------
+Am I right in assuming that ZMD 6.6.2 wasn't using SSL ? or wasn't
+using Mono ? or both ?
+
+If it was using SSL, what cipher were being used ? (you can use
+ethereal and look at the ServerHello message to see the selected cipher).
+
+Mono's implementation of AES is slow but, even if we matched MS
+performance on it, it would only be 4 times faster (i.e. still very
+slow compared to the RC4 results). Unless 128bits aren't enough (and I
+rarely heard good reasons for that) 256bits is an overkill ;-)
+
+IIRC Apache/mod_ssl can be configured to restrict the ciphers being
+used. You should play with the settings that I bet the best results
+will be with RSA/RC4-128/MD5.
More information about the mono-bugs
mailing list