On 11 May 2014 at 11:18, Chris L wrote: > The OCSP server is run by the registrar, not pfSense.
Good point. > I don´t believe this error has anything to do with mixed content on the page. > > It simply means that you have hard fail turned on for OCSP and, for some > reason, couldn´t check the status at the globalsign server. > > $ openssl ocsp -CAfile globalsign.pem -issuer globalsign.pem -VAfile > globalsign.pem -cert wildcard.pfsense.org.pem -url > http://ocsp2.globalsign.com/gsdomainvalg2 -header "HOST" > "ocsp2.globalsign.com" > Response verify OK > wildcard.pfsense.org.pem: good > This Update: May 11 18:19:06 2014 GMT > > Works here. It worked this morning, must have been a temporary problem at Globalsign's OCSP server. -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 Security Blog: http://geoapps.com/ _______________________________________________ List mailing list [email protected] https://lists.pfsense.org/mailman/listinfo/list
