Apple has filed a bug at https://bugzilla.mozilla.org/show_bug.cgi?id=1677234.
Please follow this for further updates.
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
I agree, from what I have seen online is that while Apple's OCSP responser was
indeed soft-fail, it didn't have any short-term timeout so requests were left
lingering. Due to it being soft-fail I've seen numerous posts detailing how to
block the OCSP responder address either via DNS or via the
In as far as that part of Apple's CA hierarchy is publicly trusted and
participates in the Mozilla Root CA program and that there were apparent
performance issues with ocsp.apple.com yesterday, I'm writing to suggest that I
believe there may be cause to expect some transparency regarding recent
3 matches
Mail list logo