Please provide comments and solutions that are helpful to the author of this topic.
That's the easiest way to know. When I used ESET, I didn't disable the option. I just set my browsers to ignore and no HTTPS scanning was done in the browser, but ESET kept blocking HTTPS malicious sites on browsers.I'd rather not try that (and I don't know which site that might be anyway).
Looks like they heavily rely on browser extensions. Not letting the AV dictate which browser I'll use.F-secure is a good choice if you don't want https scannings.
It's not just a matter of being able to disable it, but exactly what happens if you do:I think all AVs allow you to disable it. Right? Whether they honor your setting is another question.
Begs the question why use Windows at all?If you don't trust an AV provider to scan https then why would you be using them at all? Partially hamstringing the products protection doesn't seem a great move to me but I'm not an expert
Well, that's quite worrying if true. Unless I'm mistaken, Microsoft Defender's full protection is only available when paired with Microsoft Edge. It's even worse than browser-specific extensions: it's a single-browser AV. In any case, it's not an option - forgot to mention it in my first post.
That's the point of this thread, to NOT use them. The problem isn't about trusting AV providers in general (never claimed they are "evil"), but with this particular man-in-the-middle practice which has become the norm, essentially breaking end-to-end encryption. No software should do this, not even AVs. Just my opinion, of course.If you don't trust an AV provider to scan https then why would you be using them at all? Partially hamstringing the products protection doesn't seem a great move to me but I'm not an expert
Not sure what you mean. I was never worried about the lack of HTTPS interception, since it would be the exact opposite of what this thread is about. My questions on Defender were always on the presumption that it does NOT perform HTTPS Interception.Begs the question why use Windows at all? OP mentions Microsoft Defender isn't an option for them and is worried about the lack of HTTPS interception.
1 + 1 = ?
I use several disk-intensive programs, currently on an old PC. Defender almost always interferes, significantly increasing disk and CPU usage while they are running. I am forced to use its bad UI to create a large exclusion list to solve this, and monitor Defender before working on anything. This was my main reason.Any reason why Microsoft Defender isn't an option?
As for MS Edge, you're not required to use it for full protection.
Known bad HTTPS hosts are still blocked. This is true for all Avast, Bitdefender, ESET, Kaspersky, etc.
Norton doesn't do HTTPS scanning but relies on an extension. Though I have seen Norton blocking malicious connections even without browser extension but in rare cases. They have the ability but don't utilize it fully for some reason.
Without browser extension, F-Secure & G-Data's web blocking is restricted to HTTP only.
MD's network protection should have been better but in general, it blocks nothing but increase CPU usage under heavy downloads.
Simply disabling HTTPS protection in the AV should be enough. There are many members on the forum who use their preferred product in such way.
I don't have anything else to block on my desktop, besides the browser.Browser based adblockers like uBO & Adguard extension don't need to do that. They do filtering with APIs provided by the browsers.