This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Caută ajutor

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Află mai multe

Acest fir de discuție a fost arhivat. Adresează o întrebare nouă dacă ai nevoie de ajutor.

How can you set Firefox to, or tell if FF is always checking for certificate revocation?

  • 2 răspunsuri
  • 4 au această problemă
  • 11 vizualizări
  • Ultimul răspuns de cor-el

more options

I am anticipating a number of certificate revocations related to the heartbleed voulnerability, and would like to be able to check whether Firefox is checking for revocation, and tell it to if not.

I am anticipating a number of certificate revocations related to the heartbleed voulnerability, and would like to be able to check whether Firefox is checking for revocation, and tell it to if not.

Soluție aleasă

By default, Firefox will check but, if the OCSP server is not available, will accept the certificate for the time being.

Edit menu > Preferences > Advanced > Certificates mini-tab > "Validation" button

Citește acest răspuns în context 👍 6

Toate răspunsurile (2)

more options

Soluție aleasă

By default, Firefox will check but, if the OCSP server is not available, will accept the certificate for the time being.

Edit menu > Preferences > Advanced > Certificates mini-tab > "Validation" button

more options

For this heartbleed issue you can also temporarily disable OCSP Stapling by setting the security.ssl.enable_ocsp_stapling pref to false on the about:config page.

Make sure to check in a few days if you still need this workaround and if necessary reset the pref to true.