Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Now just waiting for the trolls to write some software that makes the response always cause it to be invalid. With a wee bit of ARP magic, you could make a bunch of mac users very unhappy at the cafe's.


No joke, this would get a fix published very quickly. I’m embarrassed I didn’t think of it myself.


OCSP responses are signed, so no, that doesn't work.


Evidently it does work if you simply suppress the response.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: