← Back to context Comment by hulitu 19 hours ago Different phylosophy: why block VPNs when you can monitor them. Most Root CAs are in US. 3 comments hulitu Reply immibis 18 hours ago Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?Edit: OCSP has been ended. edgineer 17 hours ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 16 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
immibis 18 hours ago Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?Edit: OCSP has been ended. edgineer 17 hours ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 16 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
edgineer 17 hours ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 16 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
arcfour 16 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?
Edit: OCSP has been ended.
He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited.
OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.