Avatar for Username

Vyhľadajte odpoveď

Vyhnite sa podvodom s podporou. Nikdy vás nebudeme žiadať, aby ste zavolali alebo poslali SMS na telefónne číslo alebo zdieľali osobné informácie. Nahláste prosím podozrivú aktivitu použitím voľby “Nahlásiť zneužitie”.

Learn More

Táto téma bola archivovaná. Ak potrebujete pomôcť, založte prosím novú otázku.

Why does Firefox makes an http request to ietf.org even when in HTTPS-only mode? (OCSP related)

n0u355lo
n0u355lo
more options

When in HTTPS-only mode and the "Query OCSP responder servers" settings is enabled, Firefox makes an http request on port 80 to ietf.org.

details:

  • HTTPS-only mode on, OCSP on:
  • go to http://ietf.org/
  • requests are made to:

ocsp.starfieldtech.com ietf.org ocsp.digicert.com

  • HTTPS-only mode on, OCSP on:
  • go to https://ietf.org/
  • requests are only made to:

ocsp.starfieldtech.com ocsp.digicert.com

why is this? (Firefox 103 on macOS 10.15)

When in HTTPS-only mode and the "Query OCSP responder servers" settings is enabled, Firefox makes an http request on port 80 to ietf.org. details: * HTTPS-only mode on, OCSP on: * go to '''http'''://ietf.org/ * requests are made to: ocsp.starfieldtech.com ietf.org ocsp.digicert.com * HTTPS-only mode on, OCSP on: * go to '''https'''://ietf.org/ * requests are only made to: ocsp.starfieldtech.com ocsp.digicert.com why is this? (Firefox 103 on macOS 10.15)

Všetky odpovede (2)

n0u355lo
n0u355lo Autor otázky
more options

(ignore this post)

Upravil(a) n0u355lo dňa

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

The server at http://ietf.org returns a 302 redirect to https://www.ietf.org/ so I'm not sure whether HTTPS-Only causes anything different to happen there.

There probably is a diagram somewhere showing the exact request flow for HTTPS-Only mode and whatever implications OCSP might have.