Forum List Message List New Topic Print View

bughunter

May 01, 2015 11:06PM

Registered: 9 years ago
Posts: 5

Finally had some time to construct an extremely basic server configuration with a default HTTP and HTTPS server and test it. I'm working on a production server, so there are quite a few requests every second and therefore the downtime had to be scheduled into a tiny window of opportunity. I also temporarily compiled and enabled a debug build for a few minutes (the log file went nuts). I had ssl_stapling on and no verification. There was still no OCSP stapling response data or anything related to OCSP in the debug logs.

Based on numroo's earlier response and since I was also able to fiddle around with the config in production, I decided to temporarly disable the default SSL server with the self-signed cert. After reloading the config, bam! Instantly OCSP stapling started working as expected (even with verification turned on). Re-enabling the default SSL server with the self-signed cert caused OCSP to stop working again.

Reply Quote

RSS

Subject	Author	Posted
How to enable OCSP stapling when default server is self-signed?	bughunter	April 05, 2015 11:26PM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	April 06, 2015 03:22PM
Re: How to enable OCSP stapling when default server is self-signed?	bughunter	April 07, 2015 12:26AM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	April 07, 2015 09:24AM
Re: How to enable OCSP stapling when default server is self-signed?	bughunter	April 08, 2015 02:30AM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	April 08, 2015 11:30AM
Re: How to enable OCSP stapling when default server is self-signed?	bughunter	May 01, 2015 11:06PM
Re: How to enable OCSP stapling when default server is self-signed?	173279834462	May 07, 2015 11:54AM
Re: How to enable OCSP stapling when default server is self-signed?	bughunter	May 11, 2015 10:31AM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	May 07, 2015 01:12PM
Re: How to enable OCSP stapling when default server is self-signed?	173279834462	May 07, 2015 02:28PM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	May 08, 2015 08:48AM
Re: How to enable OCSP stapling when default server is self-signed?	numroo	April 12, 2015 12:21PM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	April 13, 2015 07:58AM
Re: How to enable OCSP stapling when default server is self-signed?	hotwirez	September 28, 2016 12:44PM
Re: How to enable OCSP stapling when default server is self-signed?	Maxim Dounin	September 28, 2016 05:16PM
Re: How to enable OCSP stapling when default server is self-signed?	hotwirez	September 29, 2016 09:17AM
Re: How to enable OCSP stapling when default server is self-signed?	B.R.	September 29, 2016 01:02PM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 136

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018