-
Description here: https://wiki.mozilla.org/Security/Server_Side_TLS#OSCP_Stapling
nginx snippet (https://mozilla.github.io/server-side-tls/ssl-config-generator/):
```
# OCSP Stapling ---
…
-
### Is there an existing issue for this feature request?
- [X] I have searched the existing issues
### Is your feature request related to a problem?
Firstly, thank you for your continuous efforts i…
-
This bug is an umbrella/tracking bug, acting as a one-stop-shop to see progress on the multiple sub-tasks necessary to achieve this large-scale project.
OCSP carries with it two large disadvantages…
-
I've been searching through the various plugins on how to inject something. But basically i'd like to propose the following:
`cat CA+Intermediate.pem | dokku ssl:ocsp-stapling myapp`
Which would alt…
-
On a few of our servers (ubuntu 23.04, apache 2.4.55, mod_md 2.4.19) randon certificates aren't renewing.
example from the acme server status
{
"name": "***redacted***",
"domai…
-
Is there supposed to be 2 OCSP requests for SSL cert validation?
This is directly from the console of my ec2 instance:
[INFO] raised RLIMIT_NOFILE to 1048576
h2o server (pid:1) is ready to serve req…
-
Although we have a golang.org/x/crypto/ocsp package, we don't in fact have an OCSP verifier. The existing package provides serialization and parsing, but not APIs for "get me an OCSP response for this…
-
We are introducing first-class support for HTTPS certificates on the SecureDrop .onions in the 0.4 release (#1928, #1934). @fowlslegs brought up potential privacy concerns due to OCSP revocation check…
-
### Description
apisix support ocsp stapling or not. and is support crl list?
-
I get my certificates from letsencrypt.org. They have an option called `--must-staple` that configures the certificate so as to require a browser to ensure my webserver responds to an OCSP query (I th…