Browsers by default just ignore any OCSP error. So while the browser might have seen an error getting the OCSP reply, the user is not aware of it.
And why Browsers do ignore OCSP errors? Because some CA don't take OCSP errors seriously.
So yes, it has an impact: it comfort Browsers in that situation, which is less than ideal, because it impacts the security of *all* users.
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
