Support for OCSP stapling?

Follow

Dan Plaskon

• September 12, 2015 11:03

Just curious – is support for OCSP stapling something that’s currently on the roadmap?

0

• 

  Sean Leach

  • September 12, 2015 14:22

  Hey Dan - you are in luck, we already support OCSP stapling. You can test it either at https://www.ssllabs.com or with the trusty openssl cli tool:

  echo | openssl s_client -connect www.fastly.com:443 -tls1 -tlsextdebug -status
  

  Look for the OCSP Response section:

  OCSP response:
  ======================================
  OCSP Response Data:
      OCSP Response Status: successful (0x0)
      Response Type: Basic OCSP Response
      Version: 1 (0x0)
  ...
  

  0

  Permalink

Please sign in to leave a comment.