Feifei Cai created TS-3362:
------------------------------
Summary: Do not staple negative OCSP response
Key: TS-3362
URL: https://issues.apache.org/jira/browse/TS-3362
Project: Traffic Server
Issue Type: Improvement
Components: SSL
Reporter: Feifei Cai
When get OCSP response, we check it before cache/staple it. If it's negative, I
think we'd better discard it instead of sending back to user agent. This would
not increase security risk: User agent would query CA for OCSP response if ATS
does not staple it with certificate.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
