Current time: 10-20-2020, 09:41 PM Hello There, Guest! (LoginRegister)

Post Reply 
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
OCSP Stapling
02-27-2015, 05:56 PM
Post: #2
RE: OCSP Stapling
Hey There,

So apparently my hosting service will not enable OCSP Stapling, disable insecure ciphers that are not supposed to be used with SSL certificates, and has a lot to be desired when it comes to their support team in my opinion; they say that it will impact all users on the shared server - but how is that a bad thing?

I need some sort of new coldfusion hosting that supports OCSP Stapling and takes security concerns to a new level as far as support and configuration goes. Eventually, we plan to move to a dedicated server, but are willing to look at shared and VPS solutions. It sort of bugs me that they support the RC4 cipher; having that enabled along with having an SSL certificate gives my users a false sense of security. If anything to were happen to those users, I might even be liable to be sued? The hosting solution would have to work well with a CDN plan - I know that much. I am not sure how SSL certs work with CDNs.

I am not sure if this is the right type of forum to ask about hosting, but it does concern page speed to an extent as far as stapling is concerned. Maybe even having SSL certificates more secure would effect page speed. I hear those RC4 ciphers are supposed to be better for performance but the security leaves a lot to be desired.

Travis Walters
Find all posts by this user
Quote this message in a reply
Post Reply 

Messages In This Thread
OCSP Stapling - - 02-26-2015, 03:41 PM
RE: OCSP Stapling - - 02-27-2015 05:56 PM

Forum Jump:

User(s) browsing this thread: 1 Guest(s)