Bad response from OCSP server

TWD

Registered
May 20, 2015
3
0
1
United Kingdom
cPanel Access Level
Root Administrator
I was debugging a problem with some slow websites and came accross the following entries in the apache error log:

Thu May 30 20:18:35.847964 2019] [ssl:error] [pid 16892:tid 47787978688256] (70007)The timeout specified has expired: [client 40.77.167.125:2464] AH01977: failed reading line from OCSP server
[Thu May 30 20:18:35.848007 2019] [ssl:error] [pid 16892:tid 47787978688256] [client 40.77.167.125:2464] AH01980: bad response from OCSP server: (none)
[Thu May 30 20:18:35.848074 2019] [ssl:error] [pid 16892:tid 47787978688256] AH01941: stapling_renew_response: responder error

I've done some Googling and read a few forum threads but nothing seems to apply to my specific error.

It's this line in the logs which has me confused:

AH01980: bad response from OCSP server: (none) - shouldn't that be 'ocsp.comodoca.com' ?????

It seems that apache is failing to get the OCSP server info (none) from somewhere and can't connect?
 

cPanelMichael

Technical Support Community Manager
Staff member
Apr 11, 2011
47,894
2,226
363
cPanel Access Level
DataCenter Provider
Twitter
Hello TWD,

The following links include overall OCSP information:

SOLVED - Sectigo OCSP Outage 05/01/2019
Tutorial - How to address OCSP responder errors

It looks like ticket 12449641 is open to request more information about seeing "none" in the Apache OCSP error output. I'll monitor this ticket and update this thread with the outcome once it's closed.

Thank you.

Update: It looks like the ticket was closed. Feel free reply to the ticket to re-open it if you have additional questions about the OCSP error output (e.g. the "none" entry). Thank you.
 
Last edited: