#ocsp — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #ocsp, aggregated by home.social.
-
El lado del mal - Máster Online en Seguridad Ofensiva del Campus Internacional de Seguridad 2026: Comienzo el 24 de Marzo https://www.elladodelmal.com/2026/02/master-online-en-seguridad-ofensiva-del.html #Master #Cibersegurida #OCSP #Formación #OffensiveSecurity
-
New Kitten Release 🥳
To OCSP¹ or not to OCSP…
• Turns on OCSP support in the server only if the site’s certificate has the OCSP stapling extension.
This is to support both servers that still have OCSP stapling in their certs as well as new ones that don’t. (Let’s Encrypt sunset OCSP support yesterday and there is a transitionary period where Kitten servers will have both types of certificates. This update is to ensure we support both without issues.)
Also updated, if you’re interested in playing lower in the stack:
• @small-tech/https: https://codeberg.org/small-tech/https
• @small-tech/auto-encrypt: https://codeberg.org/small-tech/auto-encryptEnjoy!
:kitten:💕¹ Online Certificate Status Protocol (https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol). Yes, I hate abbreviations too :)
#Kitten #SmallWeb #SmallTech #KittenRelease #TLS #OCSP #OCSPStapling #LetsEncrypt
-
Let's Encrypt 把 CRL 位置加到憑證裡面了
在「Adding CRL URLs to certificates」這邊看到的公告,把 CRL 位置加到憑證裡面了: On March 12, 2025, Let’s Encrypt will start including CRL (Certificate Revocation List) URLs in certificates we issue, in addition to the OCSP URLs we already include. This is part of our previously announced changes to deprecate support for OCSP. CRLs and OCSP are two di…
#authority #ca #certificate #crl #letsencrypt #ocsp #revoke #root #security
-
New releases
• Kitten (rolling release)
• @small-tech/https version 5.3.2
• Auto Encrypt version 4.1.3OCSP support has been reinstated in the server so existing sites with Let’s Encrypt certificates provisioned prior to the removal of the OCSP stapling requirement will not fail to load in Firefox.
Kitten servers in production will automatically update to this version in a few hours. You can also sign in to the Kitten settings page on your server and do a manual update to update Kitten immediately.
Thanks to @stefan and @s1r83r for bringing this to my attention. (https://mastodon.ar.al/@aral/113969540950647873)
#Kitten #SmallWeb #SmallTech #AutoEncrypt #TLS #SSL #HTTPS #OCSP #LetsEncrypt #web #dev #NodeJS #JavaScript
-
New Kitten release
• Upgrades to version 5.3.1 of @small-tech/https¹ which has version 4.1.2 of Auto Encrypt² that l removes OCSP stapling (because Let’s Encrypt has removed OCSP support).
Please upgrade your Kitten as soon as possible or any new Kitten servers you try to set up will fail and any certificate renewals for existing servers will start to fail in May.
(To upgrade, run `kitten update`. Your production servers will update automatically.)
Enjoy!
:kitten:💕
¹ https://www.npmjs.com/package/@small-tech/https
² https://www.npmjs.com/package/@small-tech/auto-encrypt#Kitten #SmallWeb #SmallTech #web #dev #TLS #HTTPS #AutoEncrypt #NodeJS #JavaScript #OCSP #LetsEncrypt
-
So I guess Let’s Encrypt has decided what I’ll be working on today then…
https://letsencrypt.org/2024/12/05/ending-ocsp/
(They’re ending OCSP stapling support. I’ll be updating Auto Encrypt¹ to remove OCSP support and then update @small-tech/https, which uses it, along with Auto Encrypt Localhost² to provide seamless TLS support regardless of whether you’re working in development or in production, and then update Site.js³ – deprecated but still used to serve some of our own sites at Small Technology Foundation⁴ – and Kitten⁵, with the latest @small-tech/https.)
¹ https://codeberg.org/small-tech/auto-encrypt
² https://codeberg.org/small-tech/auto-encrypt-localhost
³ https://codeberg.org/small-tech/https
⁴ https://small-tech.org
⁵ https://kitten.small-web.org#SmallWeb #SmallTech #TLS #SSL #HTTPS #LetsEncrypt #OCSP #AutoEncrypt #AutoEncryptLocalhost #SiteJS #Kitten
-
OCSP 的淡出...
前幾天的「The Slow Death of OCSP」這篇在講 OCSP 不受瀏覽器廠商青睞而逐漸會淡出舞台的事情...
目前各家瀏覽器都朝向自己將 revoke 名單 (通常是透過各家的 CRL) 整合成一份文件後讓瀏覽器下載的方式:
Instead of user agents consuming the CRLs directly, major browser vendors (and, presumably, operating systems) maintain th
https://blog.gslin.org/archives/2025/02/02/12239/ocsp-%e7%9a%84%e6%b7%a1%e5%87%ba/
#Browser #Computer #Murmuring #Network #Privacy #Security #Software #WWW #certificate #ocsp #online #privacy #protocol #security #status
-
Let's Encrypt 拿掉 OCSP 支援的時間表出來了
Let's Encrypt 宣佈了 OCSP 日落的時間表:「Ending OCSP Support in 2025」。
第一波是 2025/01/30,帶有 OCSP Must-
#Computer #Murmuring #Network #Privacy #Security #Service #ca #certificate #letsencrypt #must #ocsp #privacy #revoke #security #staple #stapling #support #timetable #tls
-
New blog post: Post-OCSP certificate revocation in the Web PKI.
With OCSP in all forms going away, I decided to look at the history and possible futures of certificate revocation in the Web PKI. I also threw in some of my own proposals to work alongside existing ones.
I think this is the most comprehensive current look at certificate revocation right now.
-
El lado del mal - Máster Online de Seguridad Ofensiva 2024-2025 con Certificación OSCP Offensive Security para ser Pentester https://www.elladodelmal.com/2024/01/master-online-de-seguridad-ofensiva.html #Master #OCSP #Pentesting #Pentester #Ciberseguridad #Formacion
-
OCSP Stapling?
Mal eine #Frage an die IT-ler hier: Ich erwäge, #OCSP-Stapling für unsere #Webserver zu aktivieren. Ist diese Technologie noch aktuell bzw. hat sie Zukunft?
AFAIK haben alle aktuellen Browser die Technik wohl eingebaut, aber nur bei #Firefox wird sie aktiv genutzt - früher wohl auch in #Chrome.
Auf den ersten Blick erscheint mir die Technologie sinnvoll und #SSLlabs führt es als Kriterium für die Bewertung mit auf.
Bitte um Eure werte Einschätzung...
#Glaskugel #TLS #OCSP https://libranet.de/display/0b6b25a8-495f-f6cb-5980-982672559787