Welcome! Log In Create A New Profile

Re: How to check nginx OCSP verification

Forum List Message List New Topic Print View

Alt

March 01, 2016 11:33AM

Registered: 8 years ago
Posts: 43

Hello,

You can check with this command found on this website: https://unmitigatedrisk.com/?p=100
openssl s_client -connect login.live.com:443 -tls1 -tlsextdebug -status

If everything goes well, you should find something like:
"OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
..."

If there's no stapling, you'll get:
"OCSP response: no response sent".

Please note: when you restart nginx, you won't get an OCSP answer immediatly. You'll have to visit the URL and wait a few seconds before having the stapling working for the next request. IIRC, this behavior is because OCSP servers may be slow to answer.

Best Regards

Reply Quote

RSS

Subject	Author	Posted
How to check nginx OCSP verification	B.R.	March 01, 2016 08:54AM
Re: How to check nginx OCSP verification	Thierry	March 01, 2016 09:14AM
Re: How to check nginx OCSP verification	Alt	March 01, 2016 11:33AM
Re: How to check nginx OCSP verification	B.R.	March 01, 2016 12:14PM
Re: How to check nginx OCSP verification	A. Schulze	March 01, 2016 03:02PM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 134

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018