Dear all,
NaviServer with OCSP activated is now running at OpenACS.org.
A quick check with ssllabs [1] shows this via the green
"Certificate Transparency" [2], where the SCT (signed certificate timestamp)
is sent via OCSP (third delivery method in [2].
The optional OCSP is requested surprisingly often at openacs.org.
The server is up since 45 minutes, there were more than 400 OCSP
requests out of 3000.
So, if the checklist of the audit mentions Certificate Transparency (CT),
one can also add this.
-gn
[1] https://www.ssllabs.com/
[2] https://www.digicert.com/certificate-transparency/enabling-ct.htm
On 24.02.20 21:40, Gustaf Neumann wrote:
OCSP stapling is now committed to bitbucket (including documentation
update)
https://bitbucket.org/naviserver/naviserver/commits/c204be39e1ffb87c1e368335dfe0750c1cea9bb3
-g
_______________________________________________
naviserver-devel mailing list
naviserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/naviserver-devel
