If the directory has a few valid SCTs and an empty file, nginx will serve the response but it will be malformed. Specifically, Chrome will report 0 SCTs and CFNetwork (Safari) will fail to access the website at all.
Here's the test case, the good server and bad server:
If the directory has a few valid SCTs and an empty file, nginx will serve the response but it will be malformed. Specifically, Chrome will report 0 SCTs and CFNetwork (Safari) will fail to access the website at all.
Here's the test case, the good server and bad server:
good: https://patpat.vm.prod.zone/ bad: https://brokensct.patpat.vm.prod.zone/
The bad server has exactly the same config, with one empty file added to scts directory.