← Back to context Comment by hulitu 1 day ago Different phylosophy: why block VPNs when you can monitor them. Most Root CAs are in US. 3 comments hulitu Reply immibis 1 day ago Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?Edit: OCSP has been ended. edgineer 1 day ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 21 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
immibis 1 day ago Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?Edit: OCSP has been ended. edgineer 1 day ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 21 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
edgineer 1 day ago He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited. arcfour 21 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
arcfour 21 hours ago OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.
Certificate transparency is mandatory in browsers; interception certificates appear in certificate logs to be accepted. Have you found one?
Edit: OCSP has been ended.
He might be referring to OCSP. Browsers ping CAs by default, revealing to them the sites that are visited.
OCSP is very much on the way out, this is hardly true anymore; although some things still check OCSP, many things do not.