[Mozilla Enterprise] security.OCSP.require - Breaks Many Sites
Mike Kaply
mkaply at mozilla.com
Tue Feb 25 20:04:17 UTC 2020
Where did you get this recommendation?
Mike
On Tue, Feb 18, 2020 at 3:18 PM Eddie Rowe <eddie.rowe at tdhca.state.tx.us>
wrote:
> // 4.6 (L2) Set OCSP Response Policy
>
> defaultPref("security.OCSP.require", true);
>
>
>
> I have enabled this setting in ESR 68.4 x64 and many sites such as Google
> and even Mozilla just do not work. I don’t see how this could be adopted
> at a company level without created chaos. Are there persons still using
> this setting? Have you adjusted other settings to help out Firefox?
>
>
>
> *Example site that does not work with this setting set to true: *
>
> https://support.mozilla.org/en-US/questions/1169855
>
>
>
> *Error:*
>
> “Secure Connection Failed
>
>
>
> An error occurred during a connection to support.mozilla.org. The OCSP
> server experienced an internal error. Error code:
> SEC_ERROR_OCSP_SERVER_ERROR
>
>
>
> The page you are trying to view cannot be shown because the
> authenticity of the received data could not be verified.
>
> Please contact the website owners to inform them of this problem.”
>
>
>
>
> _______________________________________________
> Enterprise mailing list
> Enterprise at mozilla.org
> https://mail.mozilla.org/listinfo/enterprise
>
> To unsubscribe from this list, please visit
> https://mail.mozilla.org/listinfo/enterprise or send an email to
> enterprise-request at mozilla.org with a subject of "unsubscribe"
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.mozilla.org/pipermail/enterprise/attachments/20200225/0bbd4401/attachment.html>
More information about the Enterprise
mailing list