[tor-bugs] #13067 [Tor Sysadmin Team]: [jessie] Enable OCSP Stapling for TorProject.org
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Aug 27 10:34:32 UTC 2015
#13067: [jessie] Enable OCSP Stapling for TorProject.org
-----------------------------------+----------------------
Reporter: tom | Owner:
Type: defect | Status: reopened
Priority: normal | Milestone:
Component: Tor Sysadmin Team | Version:
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------------+----------------------
Changes (by someone_else):
* status: closed => reopened
* resolution: fixed =>
Comment:
OCSP stapling is not working on www.torproject.org, trac.torproject.org,
blog.torproject.org.
openssl s_client -connect www.torproject.org:443 -tls1_2 -tlsextdebug
-status
CONNECTED(00000007)
TLS server extension "renegotiation info" (id=65281), len=1
0001 - <SPACES/NULS>
TLS server extension "EC point formats" (id=11), len=4
0000 - 03 00 01 02 ....
TLS server extension "session ticket" (id=35), len=0
TLS server extension "heartbeat" (id=15), len=1
0000 - 01 .
OCSP response: no response sent
[...]
(TBB is sending OCSP requests for *.torproject.org to ocsp.digicert.com.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13067#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list