XG web proxy CRL checking
Please implement certificate revocation list (CRL) checking for the XG web proxy.
AdminRich Baldry (Senior Product Manager, Network Security Group, Sophos Features & Ideas Laboratory) commented
What behaviour would you be looking for? At the moment OCSP stapling can prove a site is valid if it is present, but the lack of an OCSP staple only proves a site is invalid if it has been visited previously and the 'must-staple' header has been seen. Is that what you had in mind?
OCSP stapling for the XG Webproxy.