Hello,
I have a recently been issued ssl cert from godaddy.
-running:
openssl-1.0.2
httpd-2.4.6
-It had been added to CT logs by godaddy.
https://crt.sh/?id=395704043-SCT had been embeded into the crt by godaddy
(check via
https://decoder.link/)
-chrome still shows no CT information of my site.
relevant netlog snippet from chrome 66:
t=7738858 [st= 54] SIGNED_CERTIFICATE_TIMESTAMPS_RECEIVED
--> embedded_scts = ""
--> scts_from_ocsp_response = ""
--> scts_from_tls_extension = ""
t=7738858 [st= 54] SIGNED_CERTIFICATE_TIMESTAMPS_CHECKED
--> scts = []
.......
--> ct_compliance_status = "NOT_ENOUGH_SCTS"
AFAIK using embeded SCT requires no server reconfiguration(apart from install the new crt),
but somehow i still got negative result?
Any pointer will be highly appreciated. Thank you.
Dil Lee