Get the most out of your Centmin Mod LEMP stack
Become a Member

SSL OCSP allows for man in the middle attacks ?

Discussion in 'Centmin Mod Insights' started by RoldanLT, Aug 24, 2015.

Tags:
  1. RoldanLT

    RoldanLT Well-Known Member

    4,157
    1,007
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,421
    Local Time:
    1:48 PM
    1.11
    10.2
    I requested OCSP support for my site on Sucuri, and their support said:
    Is this true?
    Any evidence? :/
     
  2. eva2000

    eva2000 Administrator Staff Member

    33,667
    7,454
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,459
    Local Time:
    3:48 PM
    Nginx 1.13.x
    MariaDB 5.5
    not quite sure but from Certificate revocation: Why browsers remain affected by Heartbleed | Netcraft

     
    • Like Like x 1
  3. eva2000

    eva2000 Administrator Staff Member

    33,667
    7,454
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,459
    Local Time:
    3:48 PM
    Nginx 1.13.x
    MariaDB 5.5
    Maybe also ask Sucuri for more explanation ? or links to info we can read ?
     
  4. eva2000

    eva2000 Administrator Staff Member

    33,667
    7,454
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,459
    Local Time:
    3:48 PM
    Nginx 1.13.x
    MariaDB 5.5
    • Like Like x 1
  5. RoldanLT

    RoldanLT Well-Known Member

    4,157
    1,007
    113
    May 25, 2014
    Phillipines
    Ratings:
    +1,421
    Local Time:
    1:48 PM
    1.11
    10.2
    • Informative Informative x 1
  6. eva2000

    eva2000 Administrator Staff Member

    33,667
    7,454
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,459
    Local Time:
    3:48 PM
    Nginx 1.13.x
    MariaDB 5.5
  7. eva2000

    eva2000 Administrator Staff Member

    33,667
    7,454
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,459
    Local Time:
    3:48 PM
    Nginx 1.13.x
    MariaDB 5.5
    Might need to look into HPKP - HTTP Public Key Pinning SecurityEngineering/Public Key Pinning - MozillaWiki

    Public Key Pinning - Web security | MDN
     
    Last edited: Aug 24, 2015
    • Informative Informative x 2
..