On Tue, Sep 6, 2016 at 2:16 PM, Jakob Bohm <[email protected]> wrote:
> Here are a list of software where I have personally observed bad OCSP > stapling support: > > IIS for Windows Server 2008 (latest IIS supporting pure 32 bit > configurations): No obvious (if any) OCSP stapling support. AFAIK IIS 7.0 supports OCSP stapling and it is enabled by default, for more information see https://unmitigatedrisk.com/?p=95 or https://www.digicert.com/ssl-support/windows-enable-ocsp-stapling-on-server.htm Martin _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
