luasec icon indicating copy to clipboard operation
luasec copied to clipboard

Published 20 hours ago verified publisher icon lunarmodules

OCSP Stapling

Open Nothing4You opened this issue 9 years ago • 6 comments

Please implement OCSP Stapling. This is especially useful to 1. reduce load of OCSP servers and 2. prevent privacy leaks of who is connecting to your host towards the OCSP server.

Nothing4You avatar Apr 16 '15 12:04 Nothing4You

+1.

biergaizi avatar Jan 16 '17 13:01 biergaizi

Any chance?

robert-scheck avatar Jan 28 '18 10:01 robert-scheck

I don't know how hard is to implement this. I'm focused on university stuffs, I need to find free time for it.

brunoos avatar Feb 08 '18 18:02 brunoos

Hello, Are there any news on this?

mimi89999 avatar Jun 10 '21 13:06 mimi89999

Sorry, I confess I did not look anything about it. I will try to find time to see it.

brunoos avatar Jun 16 '21 13:06 brunoos

I started some exploratory coding in https://github.com/Zash/luasec/tree/ocsp that I believe manages a partial client-side OCSP check. No idea how to do the server-side parts yet, or how to check the cert for the must-staple flag.

Zash avatar Jun 16 '21 15:06 Zash