On Friday 03 December 2010 10:31:24 Rob Stradling wrote: <snip> > Would it be possible to make OCSP Stapling enabled by default (when the > server certificate contains an OCSP Responder URL in the AIA extension) > instead of disabled by default? > (Perhaps "SSLUseStapling" could be replaced by "SSLDisableStapling")
Steve et al, Could you possibly spare a moment to answer this question? Thanks. > I just wonder how many webmasters would bother to add "SSLUseStapling on" > to their config files, even though OCSP Stapling benefits all parties. > > I understand that Microsoft IIS 7.x enables OCSP Stapling by default. Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online
