Firefox just made themselves the best browser for HTTPS revocation, with OCSP Must-staple and short-lived certs: https://blog.mozilla.org/security/2015/11/23/improving-revocation-ocsp-must-staple-and-short-lived-certificates/ …
-
-
@BRIAN_____@hanno Started implementing OCSP stapling+refresh for Apache's mod_gnutls. Had trouble with bugs in hacks for mod_ssl+mod_proxy. -
@TheSecurityFail@hanno Interesting. Would love to learn more about that. -
@BRIAN_____@hanno Cf. https://github.com/BenBE/mod_gnutls/tree/stapling … - Basic stuff was done. mod_gnutls+mod_proxy didn't want to work together though :(
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.