3 Mar
2016
3 Mar
'16
3:17 p.m.
On 03-03-16 14:09, Gedalya wrote:
On 03/03/2016 07:30 AM, Stephan Bosch wrote:
BTW, I can imagine that Thunderbird can already do that, as it shares much of the Firefox code base. Thunderbird definitely does validate certificates via OCSP, enabled by default and I've run into that the hard way a couple of times wrt StartSSL having issues with their responder. This isn't hypothetical, guys....
OCSP status querying isn't the same as verifying stapled OCSP responses though. Can't find Thunderbird's support for stapling unfortunately..