Is teddit.net working fine with the new ocsp librewolf setting for most, without tweaks on librewolf?
I think so, I’m keeping my eyes on OCSP issues tho.
in your particular case I would suggest clearing all cookies and site data for lemmy from your urlbar, closing and opening the browser, and see if that does the trick. the error message seems to point to a different problem than the other reports I had, sorry bout not noticing earlier.
It’s not a cookies, neither site data issue. I did try your suggestions about cleaning all site data, and it didn’t help. I still get the OCSP mal formed response. BTW, it’s not Lemmy, it’s teddit. Lemmy is not giving me issues. I once in a while read some locally (cookies) subscribed reddits through teddit, but I no longer have a reddit account…
I’ll keep commented the ocsp require setting out. It seems safe, given that’s why stappling was introduced. Besides, it’s FF’s recommendation, given the ocsp service of the site might be down, or not working well. But FF indicates stappling solves the issue, particularly because:
security.ssl.enable_ocsp_must_staple
is set to true by default. However I’m locking it in librewolf.cfg just in case…
I don’t think this is a bug about the ocsp require setting, and I believe it’s working as intended, just that it’s way too strict. You can try out teddit on your own. If you do, please let me know. I don’t discard any other issue, but the error message seems way too clear, hehe.
not all websites actually support stapling, keep that in mind. either way we plan to expose the require setting in the UI in the next release, that should make things easier!
I think so, I’m keeping my eyes on OCSP issues tho.
in your particular case I would suggest clearing all cookies and site data for lemmy from your urlbar, closing and opening the browser, and see if that does the trick. the error message seems to point to a different problem than the other reports I had, sorry bout not noticing earlier.
It’s not a cookies, neither site data issue. I did try your suggestions about cleaning all site data, and it didn’t help. I still get the OCSP mal formed response. BTW, it’s not Lemmy, it’s teddit. Lemmy is not giving me issues. I once in a while read some locally (cookies) subscribed reddits through teddit, but I no longer have a reddit account…
I’ll keep commented the ocsp require setting out. It seems safe, given that’s why stappling was introduced. Besides, it’s FF’s recommendation, given the ocsp service of the site might be down, or not working well. But FF indicates stappling solves the issue, particularly because:
security.ssl.enable_ocsp_must_staple
is set to
true
by default. However I’m locking it in librewolf.cfg just in case…I don’t think this is a bug about the ocsp
require
setting, and I believe it’s working as intended, just that it’s way too strict. You can try out teddit on your own. If you do, please let me know. I don’t discard any other issue, but the error message seems way too clear, hehe.Thanks !
ooops, sorry. it is working for me tho, weird.
not all websites actually support stapling, keep that in mind. either way we plan to expose the
require
setting in the UI in the next release, that should make things easier!OK, weird, I don’t know what might be causing librewolf to get ocsp mal formed responses on my side, :(
it’s in the latest 98.0.2 which was released today :-)