PHP, OpenSSL Session Key?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View


Is there a way using PHP's OpenSSL library functions to obtain the
shared session key established between a client and the server used in
the current SSL connection? I intend to use this information to cause
certain data returned by the server to be session dependent based on
that key and become invalid if the session key is has changed or is no
longer available. Any help and direction in using the available
functions for my purposes would be appreciated, thanks.

-Jason Kovacs

Re: PHP, OpenSSL Session Key?

Quoted text here. Click to load it

I have absolutely no idea.

Quoted text here. Click to load it

But why would you do session management this way (I can only guess at
session hijacking)?

Site Timeline