I'm not sure when this problem started. I'm running -current for a long time and once or twice a week I update.
Everything was working fine for a long time, so except for updating the certs using base httpd and then putting Apache back on (removing from base httpd.conf first), I wasn't really paying much attention. I noticed that an HTML validator refused to accept the cert. Tried another one and same problem. I revoked the certs (Let's Encrypt) and got new ones. Didn't help. I've tried fiddling with the SSL parts in Apache, but no luck. I tried dropping the Cipher to ALL, putting in /etc/ssl/cert.pem for CACertificate and a bunch of other things, without luck. I also tried ocspvalidator, but clueless really how to use it. man page was too terse. (Hint: how do I use this correctly?) ocspcheck -C /etc/ssl/cert.pem bennettconstruction.us.fullchain.pem ocspcheck: No OCSP nonce, or mismatch, from host r3.o.lencr.org Anybody got a cluestick? Apache docs online always suck. Is this a bug in me (most likely)? Or Apache? Thanks, Chris Bennett
