search

googlehosts / hosts

镜像:https://scaffrey.coding.net/p/hosts/git / https://git.qvq.network/googlehosts/hosts
Other
20.82k stars 10.24k forks source link

ocsp.digicert.com #448

Closed erinacio closed 4 years ago

erinacio commented 4 years ago

是什么网站 / app 出现了问题?

ocsp.digicert.com

应该是 Online Certificate Status Protocol 的 API 接口,原则上不由用户手动浏览,而是浏览器在认为合适的时候发送请求验证证书状态。该请求超时会连带触发 OCSP 调用的网页超时,表现为某个特定网站一直超时无法访问但 curl 直接访问该网站却完全正常。使用 curl 重放请求时错误如下:

% curl 'http://ocsp.digicert.com/MHEwbzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAx5qUSwjBGVIJJhX%2BJrHYOiHjAcMBoGCSsGAQUFBzABBAQNMAsGCSsGAQUFBzABAQ%3D%3D' | base64
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:--  0:00:15 --:--:--     0curl: (7) Failed to connect to ocsp.digicert.com port 80: Connection timed out

您的运营商是?

中国电信

加载失败的资源地址

参考上文 curl 的请求参数

失效域名的 DNS 解析结果

% nslookup ocsp.digicert.com 223.5.5.5
Server:         223.5.5.5
Address:        223.5.5.5#53

Non-authoritative answer:
ocsp.digicert.com       canonical name = cs9.wac.phicdn.net.
Name:   cs9.wac.phicdn.net
Address: 117.18.237.29

封锁方式

可用的 hosts

# 请将 hosts 内容粘贴在此行下方
72.21.91.29 ocsp.digicert.com
# 请将 hosts 内容粘贴在此行上方

附验证可用性过程:

% curl 'http://ocsp.digicert.com/MHEwbzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1JgmGggC72NkK8MCEAx5qUSwjBGVIJJhX%2BJrHYOiHjAcMBoGCSsGAQUFBzABBAQNMAsGCSsGAQUFBzABAQ%3D%3D' --resolve 'ocsp.digicert.com:80:72.21.91.29' | base64
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   471  100   471    0     0   1204      0 --:--:-- --:--:-- --:--:--  1201
MIIB0woBAKCCAcwwggHIBgkrBgEFBQcwAQEEggG5MIIBtTCBnqIWBBSxPsNpA/i/RwHUmCYaCALv
Y2QrwxgPMjAyMDAzMDUxNzMyNTJaMHMwcTBJMAkGBSsOAwIaBQAEFN+qEuMosQlBk+KfQoLOR0BC
lVijBBSxPsNpA/i/RwHUmCYaCALvY2QrwwIQDHmpRLCMEZUgkmFf4msdg4AAGA8yMDIwMDMwNTE3
MzI1MlqgERgPMjAyMDAzMTIxNzMyNTJaMA0GCSqGSIb3DQEBCwUAA4IBAQCm9A+OIqD4XW60qBow
mf0PWV6QWrF1y/PWG35+l9djMYrVO/q3MNpSwvyDJkabF+6kBsCi5Nkn8Deu4iB6EN66eppvKTyE
5vHcHqb6hbOqlM/Weo9do1zhyUxUl5a7T4g2S4CZXCLwXc1aQNxo8KYDowBDgNWG30+th+Zn2iss
g57/d8/0FDoJxL0jYJt6g2dJlQFHQjzW001N6yskRXVq5dADgn5MgZp+T2T/USoQD2WcKf6w59ub
GtUS/Mtb3FcDznb1+WDhvCJ97IcDTOVYUMOHE56m1+R2tctf7/PsDrox6zpN+d78d7LGGoHoQSDI
qU5c+iYaBtn3D4ZOmLs9
mraandtux commented 4 years ago

昨天开始就没事了,关了吧