[Mozilla Enterprise] security.OCSP.require - Breaks Many Sites
Eddie Rowe
eddie.rowe at tdhca.state.tx.us
Tue Feb 18 23:18:01 UTC 2020
// 4.6 (L2) Set OCSP Response Policy
defaultPref("security.OCSP.require", true);
I have enabled this setting in ESR 68.4 x64 and many sites such as Google and even Mozilla just do not work. I don't see how this could be adopted at a company level without created chaos. Are there persons still using this setting? Have you adjusted other settings to help out Firefox?
Example site that does not work with this setting set to true:
https://support.mozilla.org/en-US/questions/1169855
Error:
"Secure Connection Failed
An error occurred during a connection to support.mozilla.org. The OCSP server experienced an internal error. Error code: SEC_ERROR_OCSP_SERVER_ERROR
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the website owners to inform them of this problem."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.mozilla.org/pipermail/enterprise/attachments/20200218/57a668a7/attachment.html>
More information about the Enterprise
mailing list