Seems google noted that using OCSP and not rejecting certificates on connection failure doesn't make much sense: http://www.imperialviolet.org/2012/02/05/crlsets.html
So they decided that they'll probably disable OCSP altogether. Not sure what I should think of it (seriously, they're probably right to disable something that is broken anyway). -- Hanno Böck mail/jabber: [email protected] GPG: BBB51E42 http://www.hboeck.de/
signature.asc
Description: PGP signature
