From 3833fd16ebd86e238c4baafce3164b275ace2882 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Thu, 26 Sep 2024 07:26:02 -0700
Subject: [PATCH] Remove unnecessary OCSP stapling config

Signed-off-by: Tommy <contact@tommytran.io>
---
 etc/nginx/conf.d/tls.conf | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/etc/nginx/conf.d/tls.conf b/etc/nginx/conf.d/tls.conf
index 8a7a9d5..271ad0f 100644
--- a/etc/nginx/conf.d/tls.conf
+++ b/etc/nginx/conf.d/tls.conf
@@ -19,13 +19,8 @@ ssl_session_ticket_key session-ticket-keys/3.key;
 ssl_session_ticket_key session-ticket-keys/2.key;
 ssl_session_ticket_key session-ticket-keys/1.key;
 
-## Enable OCSP Stapling
-## We will use GrapheneOS's OCSP Fetcher to get the stapling file: https://github.com/GrapheneOS/infrastructure/blob/main/certbot-ocsp-fetcher
-ssl_stapling on;
-ssl_stapling_verify on;
-
 ## The following settings need to be declared manually per vhost:
 # ssl_certificate
 # ssl_certificate_key
 # ssl_trusted_certificate
-# ssl_stapling_file
\ No newline at end of file
+# ssl_stapling_file