On Wed, Aug 16, 2017 at 8:50 AM, mike _ <arizonagroovejet@xxxxxxxxx> wrote: > Could it be that ocsp.usertrust.com pre-produced a response for my > certificate at "Aug 16 00:58:00 2017 GMT" and is handing that out to > my instance of httpd? That's what I suspect. You could put a packet capture between Apache and the OCSP server and it would confirm that after a reboot or stop/start (maybe restart?) that such an OCSP response comes in on that backend side on the next frontend handshake (or at startup? I don't know much about OCSP in mod_ssl) --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|