Y
Hacker News
new
|
ask
|
show
|
jobs
by
Avamander
2215 days ago
When OCSP is down nothing happens with most browsers. Except-Staple might worsen it a bit, but how many use that?
1 comments
josephcsible
2215 days ago
My point is that connecting with OCSP down carries the exact same risk that accepting an expired certificate does. In both cases, the risk is that the certificate might have been revoked without you knowing it.
link