[caops-wg] Issue with OCSP through HTTP caches
Matt Crawford
crawdad at fnal.gov
Mon Apr 24 13:39:11 CDT 2006
On Apr 24, 2006, at 2:39, jluna at ac.upc.edu wrote:
> HTTP Proxying is useful, but the problem may arise from HTTP-caches
> were a
> misconfigured server may begin responding OCSP Requests instead of
> sending them
> to the OCSP Responder. I think that this is likely to happen when
> OCP Requests
> are being send over HTTP/1.0 (i.e. OpenSSL clients?).
It would be very important to know what caching control is being sent
by the OCSP Responder when the cache first sends the request to it.
More information about the caops-wg
mailing list