apache ssl: Do not pass OCSP stapling failures to client
authorGrant Slater <git@firefishy.com>
Sat, 11 Oct 2014 18:09:27 +0000 (19:09 +0100)
committerGrant Slater <git@firefishy.com>
Sat, 11 Oct 2014 18:09:32 +0000 (19:09 +0100)
commit55f07b266707be40843e951f5811e0de82b50fb5
tree92d13653b77121cd6fb424376b6f7b2967d9a62e
parentd055ba8cab7e97e0a8524aa0bf694ce8001875b2
apache ssl: Do not pass OCSP stapling failures to client

Do not pass OCSP stapling failures to client.
CA's OCSP servers occionally fail, propagating an error is undesireable and causes Firefox and other clients by default to reject the connection.
cookbooks/apache/templates/default/ssl.erb