On 6/14/2016 10:31 AM, Thijs Kinkhorst wrote:
> However, the following does not work:
> 1. Start HAproxy without the .ocsp file present.
> 2. Issue "set ssl ocsp-response " to socket.
> 3. HAproxy responds with "OCSP single response: Certificate ID does not
> match any certificate or issuer.", requ
On 14-06-16 20:10, Lukas Tribus wrote:
> Am 14.06.2016 um 18:31 schrieb Thijs Kinkhorst:
>> If so, I'd like it to become possible, because I'd prefer to be able to
>> set this entirely via the socket approach, and not having to special
>> case the initial condition where the response was not presen
Hello,
Am 14.06.2016 um 18:31 schrieb Thijs Kinkhorst:
If so, I'd like it to become possible, because I'd prefer to be able to
set this entirely via the socket approach, and not having to special
case the initial condition where the response was not present.
But then you will have a race cond
Op 14-6-2016 om 18:31 schreef Thijs Kinkhorst:
Hi all,
First, thanks for haproxy which is really valuable to us.
I'm trying to set up HAproxy so it does OCSP stapling. This works when I
create the $certname.ocsp file and reload haproxy, but I'm trying to get
it to work by using the socket.
The
Hi all,
First, thanks for haproxy which is really valuable to us.
I'm trying to set up HAproxy so it does OCSP stapling. This works when I
create the $certname.ocsp file and reload haproxy, but I'm trying to get
it to work by using the socket.
The following works for me:
1. Create .ocsp file
2.
5 matches
Mail list logo