Mastodawn

Gea-Suan Lin Jul 23, 2024

Let's Encrypt 想要停掉 OCSP 服務

看到 Let's Encrypt 貼出來的文章，想要停掉 OCSP 服務：「Intent to End OCSP Service」，而打算以 CRLs 為主。

OCSP 是拿來驗證 certificate 是否有效的機制，由 CA 提供服務讓瀏覽器查詢，但這會

https://blog.gslin.org/archives/2024/07/24/11907/lets-encrypt-%e6%83%b3%e8%a6%81%e5%81%9c%e6%8e%89-ocsp-%e6%9c%8d%e5%8b%99/

#Computer #Murmuring #Network #Privacy #Security #Service #WWW #authority #ca #cache #certificate #crl #crls #letsencrypt #ocsp #performance #privacy #scalability #scale #security #stapling

Let's Encrypt 想要停掉 OCSP 服務

看到 Let's Encrypt 貼出來的文章，想要停掉 OCSP 服務：「Intent to End OCSP Service」，而打算以 CRLs 為主。 OCSP 是拿來驗證 certificate 是否有效的機制，由 CA 提供服務讓瀏覽器查詢，但這會有效能與 privacy issue。前者比較容易理解，因為熱門網站所使用的 HTTPS certificate 會導致很多瀏覽器跑去 OCSP 服務查詢；後者則是因為 OCSP 服務就會知道哪個 IP 存...

Gea-Suan Lin's BLOG

cambridgeschoolvolunteers Dec 15, 2022

Here are some hyperlocal hashtags that no one is using here as yet:
#CRLS, which is Cambridge Rindge and Latin School, the one public high school in the city where we need more tutors
#ks2 aka
#kendallsq
#harvardsquare
#InmanSquare (being used here unabbreviated but otherwise #InmanSquare
#davissquare
#eastcambridge
#weha which stands for Wellington-Harrington neighborhood (OK, it's hardly ever been used on the birdsite, but ...)
#CambPS
#Cambridgema