-
`x/crypto/ocsp` makes an incorrect assumption about the contents of the `BasicOCSPResponse`'s `certs` field and has a broken API as a result.
---
Per [RFC 6960 Section 4.2.1 ASN.1 Specification …
-
Hi Ivan,
In the API docs you have «ocspStapling - true if OCSP stapling is deployed on the server»
But many CA's doesn't have OCSP IPv6 responders.
A nice list (probably outdated) in http://unmitiga…
-
It would be great to support ocsp stapling in the haproxy router.
AFAICT it needs two things
- a loop that gets the ocsp response to serve,
- either a call to haproxy's unix socket with the response,…
-
File: [/en_US/admin/cfg.md](https://www.emqx.io/docs/en/v5.0/admin/cfg.html)
Many scenarios require use of a OCSP or Revocation list for TLS client certificate. Now as OCSP or CRLs are not supporte…
-
OpenSSL ocsp responder does not free sockets and it leaves zombie processes on Fedora.
-
To replace some additional existing infrastructure with Boulder Observer, we'd want to add three more things to probe:
1. The validity and remaining lifetime of the CRL at a given URL
2. The remai…
-
Can we add OCSP stapling support in the response to avoid a deadlock in running DNS-over-TLS only Unbound server?
It's currently not supported. I see NSD recently got ocsp stapling support so presu…
yegle updated
2 years ago
-
Must-Staple is a certificate field that tells clients to refuse connection when an OCSP staple was not provided by the server. I am migrating from the abandoned cross-platform version of the OpenBSD c…
-
Monitoring stopped working after the update. RainbowMiner v4.9.3.5
-
[swift-unidoc](https://github.com/tayloraswift/swift-unidoc) found an ambiguous codelink in [`OCSPPolicy.swift:71`](
https://github.com/apple/swift-certificates/blob/01d7664523af5c169f26038f1e5d444ce…