-
-
Notifications
You must be signed in to change notification settings - Fork 215
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enable OCSP stapling #542
Comments
I'm not so sure we want to deal with this (yet). It sounds like the implementation in Apache is a mess. |
Should I close issue, or leave it open? |
quoted article has been updated, stating that "the situation has improved considerably" |
This issue is stale because it has been without activity for 60 days. It will be closed after 7 more days of inactivity. |
OK, I've been checking this and to do it the "better" way we need to use this I would like to try to implement it if you think it's worthwhile @kyrofa |
gently ping @kyrofa |
It's interesting that mod_md might be considered the solution to this, @pachulo. It might tie together with the solution to #1902 as well, potentially. Stuff like this makes me nervous though:
The idea of essentially making our users into unwitting beta testers makes me uncomfortable. When it breaks we're holding the pieces. What do you think? |
Well, to be honest, I don't feel like doing it in that case. I don't really think it's such an important feature for us to rush. |
Enable OCSP stapling as it increases performance and privacy.
Is also recommended by https://mozilla.github.io/server-side-tls/ssl-config-generator/
Feel free to share any thoughts on this.
The text was updated successfully, but these errors were encountered: