Follow-up Comment #2, bug #43799 (project wget): OK, it wasn't clear that GnuTLS had to implement OCSP, which is actually better since all software linked with GnuTLS can benefit from it. So, now I can see in Debian/unstable (which now has a new GnuTLS version):
$ wget https://www.vinc17.net:4434/ --2015-05-04 02:21:07-- https://www.vinc17.net:4434/ Resolving www.vinc17.net (www.vinc17.net)... 92.243.22.117, 2001:4b98:dc0:45:216:3eff:fe9b:eb2f Connecting to www.vinc17.net (www.vinc17.net)|92.243.22.117|:4434... connected. ERROR: The certificate of ‘www.vinc17.net’ has been revoked. I suggest that the wget man page says that OCSP support is done by GnuTLS. Well, something like that. _______________________________________________________ Reply to this item at: <http://savannah.gnu.org/bugs/?43799> _______________________________________________ Message posté via/par Savannah http://savannah.gnu.org/
