2 Replies Latest reply: Nov 13, 2012 3:08 AM by Mark Jalbert
emmanuelfromhastings-on-hudson Level 1 Level 1 (0 points)

hello

 

little snitch told me ocspd wanted to go here. fff?

 

http://gtssldv-aia.geotrust.com/

 

thanks


MacBook Pro, Mac OS X (10.6.8)
  • 1. Re: ocspd suspicious website?
    roam Level 6 Level 6 (13,545 points)

    I have no idea about that site, I just want to make the point that Littlesnitch is just a 'gatekeeper' application that informs you of outgoing connections. It does not pass judgement on the soundness or otherwise of any connection.

  • 2. Re: ocspd suspicious website?
    Mark Jalbert Level 5 Level 5 (4,475 points)

    ocspd performs caching and network fetching of Certificate Revocation Lists (CRLs) and Online Certificate Status Protocol (OCSP) responses. It is used by Security.framework during certificate verification. Security.framework communicates with ocspd via a private RPC interface. When Security.framework determines that a CRL is needed, or that it needs to perform an OCSP transaction, it performs an RPC to ocspd which then examines its cache to see if the appropriate CRL or OCSP response exists and is still valid. If so, that entity is returned to Security.framework. If no entry is found in cache, ocspd obtains it from the network, saving the result in cache before returning it to Security.framework.

     

    In other words, ocspd is part of the Operating System trying to do its job.