Enabling OCSP Stapling and CRLite?

[DoulosTrieste]

https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/41115#note_2849581

Disable simple OCSP (set security.OCSP.enabled to 0) for performance and privacy reasons

Enforce OCSP stapling, i.e. keep (lock?) Firefox's defaults of true for both security.ssl.enable_ocsp_stapling and security.ssl.enable_ocsp_must_staple.

Enable CRLite, i.e. adopt current Firefox's default of 2 ("enforce") for security.pki.crlite_mode, which we currently lock to 0 and enable Remote Settings (#40569) at least for this feature (security.remote_settings.crlite_filters.enabled -> true) or find an alternative to update the CRLite filters.