Fraudulent *.google.com certificate issued
Fraudulent *.google.com certificate issued
Posted Aug 30, 2011 9:51 UTC (Tue) by cesarb (subscriber, #6266)In reply to: Fraudulent *.google.com certificate issued by slashdot
Parent article: Fraudulent *.google.com certificate issued
At least for OCSP, there is an option to fail the HTTPS connection if it cannot contact the OCSP server. Go to Preferences>Advanced>Cryptography>Validation and mark the last checkbox.
AFAIK, current browsers prefer to use OCSP instead of CRLs.