trafficserver-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jered Floyd <>
Subject What dangers (if any) to enabling OCSP Stapling?
Date Mon, 23 Jan 2017 17:40:10 GMT

OCSP Stapling is off by default in ATS. 

What risks, if any, are there to enabling it? Given that my issuer supports OCSP and many
browsers support OCSP and OCSP Stapling, it seems like enabling it is the "safest" option.
Is there a reason it is not on by default? 


View raw message