If there’s no stapling, you’ll get:
“OCSP response: no response sent”.
Please note: when you restart nginx, you won’t get an OCSP answer
immediatly. You’ll have to visit the URL and wait a few seconds before
having the stapling working for the next request. IIRC, this behavior is
because OCSP servers may be slow to answer.
I do not want to validate OCSP responses client-side, which are OK.
I want to have details about the status nginx’ validation of the initial
OCSP query it did to the OCSP responder of the CA, especially when it
I noted that even though ssl_trusted_certificate is not set or set with
wrong (set of) certificate(s), a cached OCSP response will served by
to the client after an initial request has been made to a domain hosted
it and served through TLS.
I want to know the consequences of having such a directive badly
error.log message? Found nothing
modified OCSP response? Nope
What am I supposed to notice and where/when?
This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.