CA/Revocation Checking in Firefox: Difference between revisions

Jump to navigation Jump to search

CA/Revocation Checking in Firefox (view source)

Revision as of 00:08, 20 February 2019

35 bytes added ,  20 February 2019
→‎OCSP: clarify that "doesn't use GET" means "uses POST instead"
(Update links)
(→‎OCSP: clarify that "doesn't use GET" means "uses POST instead")
Line 65: Line 65:
If the OCSP server returns a status of “unknown”, Firefox will display the “SEC_ERROR_OCSP_UNKNOWN_CERT” error in a non-overrideable error message, regardless of the security.ocsp.require preference. Similarly, if the OCSP responder returns an error such as “trylater”, Firefox will display an error message.
If the OCSP server returns a status of “unknown”, Firefox will display the “SEC_ERROR_OCSP_UNKNOWN_CERT” error in a non-overrideable error message, regardless of the security.ocsp.require preference. Similarly, if the OCSP responder returns an error such as “trylater”, Firefox will display an error message.


Note: Firefox [https://bugzilla.mozilla.org/show_bug.cgi?id=871954#c7 no longer] performs OCSP fetching using the HTTP GET method.
Note: Firefox [https://bugzilla.mozilla.org/show_bug.cgi?id=871954#c7 no longer] performs OCSP fetching using the HTTP GET method; Firefox uses the HTTP POST method.


=== CRLite ===
=== CRLite ===
Tdsmith
17

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1207952"

Navigation menu