Bug#933129: apache2: OCSP stapling poorly handled, yielding trylater errors in the client

The upstream bugs to watch for: https://bz.apache.org/bugzilla/show_bug.cgi?id=57121 "ocsp stapling should not pass temporary server outages to clients" https://bz.apache.org/bugzilla/show_bug.cgi?id=60182 "SSLStaplingFakeTryLater Deviates From Documented Behavior of Only Being

Bug#933129: apache2: OCSP stapling poorly handled, yielding trylater errors in the client

I eventually had to disable OCSP stapling on my server: errors occur too frequently, even just after restarting apache. -- Vincent Lefèvre - Web: 100% accessible validated (X)HTML - Blog: Work: CR INRIA - computer arithmetic / AriC

Bug#933129: apache2: OCSP stapling poorly handled, yielding trylater errors in the client

On 2019-09-26 23:40:45 +0200, Vincent Lefevre wrote: > Control: found -1 2.4.38-3+deb10u1 > > On 2019-07-26 22:30:00 +0200, Vincent Lefevre wrote: > > I sometimes get SEC_ERROR_OCSP_TRY_SERVER_LATER errors in Firefox > > when I connect to my web server. The apache log shows errors like > > > >

Bug#933129: apache2: OCSP stapling poorly handled, yielding trylater errors in the client

Control: found -1 2.4.38-3+deb10u1 On 2019-07-26 22:30:00 +0200, Vincent Lefevre wrote: > I sometimes get SEC_ERROR_OCSP_TRY_SERVER_LATER errors in Firefox > when I connect to my web server. The apache log shows errors like > > [Fri Jul 26 20:01:31.355081 2019] [ssl:error] [pid 13552:tid

Bug#933129: apache2: OCSP stapling poorly handled, yielding trylater errors in the client

Package: apache2 Version: 2.4.25-3+deb9u7 Severity: important I sometimes get SEC_ERROR_OCSP_TRY_SERVER_LATER errors in Firefox when I connect to my web server. The apache log shows errors like [Fri Jul 26 20:01:31.355081 2019] [ssl:error] [pid 13552:tid 139871725876992] [client