Y
Hacker News
new
|
ask
|
show
|
jobs
by
josephcsible
2215 days ago
My point is that connecting with OCSP down carries the exact same risk that accepting an expired certificate does. In both cases, the risk is that the certificate might have been revoked without you knowing it.