djcarlin opened a new issue, #11629: URL: https://github.com/apache/trafficserver/issues/11629
This came up as a result of https://www.digicert.com/support/certificate-revocation-incident Does ATS check revocation status of origin certificates? If not, should it be a configuration setting to do so? Regarding which method to use, this recent post from Let's Encrypt indicates OCSP (not stapling) on the way out and CRLs are in fashion again: https://letsencrypt.org/2024/07/23/replacing-ocsp-with-crls.html -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
