My OperaThe My Opera forums have been replaced with forums.opera.com. Please head over there to discuss Opera's products and features
See the new ForumsYou need to be logged in to post in the forums. If you do not have an account, please sign up first.
CRL vs OCSP for EV SSL Certificates
Does the Opera 11 browser require support for OCSP for EV SSL certificates?I know that CA Browser forum has included this as a requirement for their members, but I see that neither IE8 nor Firefox7 is very strict when it comes to lack of OCSP support.
One example of a web site protected by an EV SSL certificate not supporting OCSP is https://www.accenture.com/. I am not able to access this site with Opera. Can someone confirm that the reason is lack of OCSP URI in the certificate?
The reason is browser sniffing.
Fake the UA and you will be able to access the site with Opera.
Fake the UA and you will be able to access the site with Opera.
Every morning in Africa, a gazelle wakes up. It knows it must run faster than the fastest lion or it will be killed.
Every morning a lion wakes up. It knows it must outrun the slowest gazelle or it will starve to death.
It doesn't matter whether you are a lion or a gazelle: when the sun comes up, you'd better be running.
Every morning a lion wakes up. It knows it must outrun the slowest gazelle or it will starve to death.
It doesn't matter whether you are a lion or a gazelle: when the sun comes up, you'd better be running.
Thank you for your answer, although I have no knowledge about sniffing and this UA (whatever that is). A typical user may fake a lot using different IT tools, but I don't relate Opera browser to such activities.
Anyway, I found that the site was able to respond successfully from this link: https://acn-prod-sts.accenture.com/.
This confirms that Opera is able to trust EV SSL sites without use of OCSP.
Anyway, I found that the site was able to respond successfully from this link: https://acn-prod-sts.accenture.com/.
This confirms that Opera is able to trust EV SSL sites without use of OCSP.
Some sites deliberately block Opera. The easiest way for doing it is to look after the UserAgent.(browser sniffing)
Every browser identifies itself through the UserAgent string [eg: Opera/9.80 (Windows NT 5.1; U; en) Presto/2.9.168 Version/11.51] it is sending to a server.
Therefore Opera allows you (Preferences\Advanced\Content\Manage Site Preferences\Add...\Network) to fake/mask the UserAgent to Internet Explorer or Firefox.
Every browser identifies itself through the UserAgent string [eg: Opera/9.80 (Windows NT 5.1; U; en) Presto/2.9.168 Version/11.51] it is sending to a server.
Therefore Opera allows you (Preferences\Advanced\Content\Manage Site Preferences\Add...\Network) to fake/mask the UserAgent to Internet Explorer or Firefox.
Every morning in Africa, a gazelle wakes up. It knows it must run faster than the fastest lion or it will be killed.
Every morning a lion wakes up. It knows it must outrun the slowest gazelle or it will starve to death.
It doesn't matter whether you are a lion or a gazelle: when the sun comes up, you'd better be running.
Every morning a lion wakes up. It knows it must outrun the slowest gazelle or it will starve to death.
It doesn't matter whether you are a lion or a gazelle: when the sun comes up, you'd better be running.
Forums » General Opera topics » Security and privacy in Opera