CRL and OCSP showing up as blocked by a security option in last hour
Are these a false positive? Clearly the blocked domain is currently a CNAME on those CRL and OCSP subdomains by DigiCert and Verisign. These aren’t new subdomains, but them being blocked is new. The requests and details are reflected in the screenshot. Anyone else getting this? What is the source for this type of blocking?
It started showing up around 10 PM UTC on 2023-04-12.
Happening all of a sudden on my list as well. Would you recommend unblocking now or waiting for next dns to fix?
Thanks for sharing this post. And also for reporting it as false positive.
I think many are confused across various systems resulting in (seemingly) false positive behavior.
Also relevant as supporting information:
My personal conclusion leans towards this being a false positive rather than something else — especially if that is indeed the upstream for the cryptojacking security data.
Thank you for this! I was trying to play Call of Duty Modern Warfare 2 on PC last night and it just hung as it tried to connect. Dots did not connect until I saw this post and saw a bunch of blocked* DNS requests to verisign and digicert OCSP and CRL.
- 5 mths agoLast active