Thomas D. posted on Wed, 06 Nov 2013 20:11:52 +0100 as excerpted: > Michael Orlitzky wrote: >> You should disable OCSP anyway. In Firefox, it's under, >> >> Edit -> Preferences -> Advanced -> Encryption -> Validation >> >> The OCSP protocol is itself is vulnerable to MITM attacks, which is >> cute when you consider its purpose. >> >> Moreover, it sends the address of every website you visit to a third >> party, which is the real reason to disable it IMO. > > This is going OT but I cannot leave this statement uncommented, because > from my knowledge this is wrong/you are hiding important information > everyone should know about:
Thanks. I was going to reply with something like this, but your reply was far better than mine would have been. =:^) -- Duncan - List replies preferred. No HTML msgs. "Every nonfree program has a lord, a master -- and if you use the program, he is your master." Richard Stallman
