Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
josephcsible
on Nov 13, 2020
|
parent
|
context
|
favorite
| on:
macOS unable to open any non-Apple application
Mandatory OCSP that fails open when you're offline is security theater.
snowwrestler
on Nov 13, 2020
[–]
OCSP fails open
by definition
because it is a revocation protocol. In the absence of revocation, a valid cert continues to be valid.
The problem here is simply that Apple did not build a short enough timeout into their client.
anticensor
on Nov 13, 2020
|
parent
[–]
Make OCSP fail locked and it would be a
software imprisonment
protocol instead.
Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
