On 03-03-16 14:09, Gedalya wrote: > On 03/03/2016 07:30 AM, Stephan Bosch wrote: >> BTW, I can imagine that Thunderbird can already do that, as it shares much >> of the Firefox code base. > Thunderbird definitely does validate certificates via OCSP, enabled by > default and I've run into that the hard way a couple of times wrt StartSSL > having issues with their responder. This isn't hypothetical, guys....
OCSP status querying isn't the same as verifying stapled OCSP responses though. Can't find Thunderbird's support for stapling unfortunately..
