Learn about Centmin Mod LEMP Stack today
Become a Member

Beta Branch acmetool.sh 1.0.28 add OCSP Must Staple Support

Discussion in 'Centmin Mod Github Commits' started by eva2000, May 20, 2017.

  1. eva2000

    eva2000 Administrator Staff Member

    37,214
    8,127
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,513
    Local Time:
    10:40 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    acmetool.sh 1.0.28 add OCSP Must Staple Support

    - optionally add OCSP Must Staple support OCSP Must-Staple when you set in persistent config file /etc/centminmod/custom_config.inc the variable, ACME_MUSTSTAPLE='y' prior to issuing Letsencrypt SSL certificates
    - disabled by default, ACME_MUSTSTAPLE='n'

    Continue reading...

    123.09beta01 branch
     
  2. eva2000

    eva2000 Administrator Staff Member

    37,214
    8,127
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,513
    Local Time:
    10:40 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    ssllabs test

    upload_2017-5-20_14-47-49.png
     
  3. rdan

    rdan Premium Member Premium Member

    4,414
    1,058
    113
    May 25, 2014
    Ratings:
    +1,541
    Local Time:
    8:40 AM
    Mainline
    10.2
    Scary for critical sites :).
     
  4. eva2000

    eva2000 Administrator Staff Member

    37,214
    8,127
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,513
    Local Time:
    10:40 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    and also problematic if you choose to use Nginx + BoringSSL for HTTPS as BoringSSL doesn't support OCSP at all heh
     
    • Like Like x 1
..