Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Scan https or not ?
Message
<blockquote data-quote="SeriousHoax" data-source="post: 849300" data-attributes="member: 78686"><p>I share the same view as <a href="https://malwaretips.com/members/gandalf_the_grey.52096/" target="_blank">Gandalf_The_Grey</a>. In general I'm against the principle of HTTPS scanning and allowing MITM because it's kind of security through obscurity but seeing it's advantages tempting me to accept it. So, it's tricky to simply say Yes or No on this. It's nice to have this feature but it's not a must have feature. Kaspersky, Avast, ESET, Bitdefender they're doing this for more than 4-5 years now but many other reputable AVs haven't implemented this. Norton is one of many great products which doesn't have this feature but they're doing just fine without it. Emsisoft is reluctant to ever do this. One thing to remember is that, whether your AV does SSL scanning or not, if a malware touches your hard drive it should be detected. So, in normal day to day browsing for an average user SSL scanning won't be very beneficial. In terms of security regarding SSL scanning, AVs have become better at it and the last time vulnerability regarding this was discovered in 2017 and since then nothing worrying has happened. </p><p>So, I think in general users can avoid SSL scanning by AVs but if the AV they use have this option then enabling it for online purchasing, transaction might provide a bit extra protection. But in your worst day this can actually be the total opposite but that would be extremely rare. </p><p>I think it's more important to invest in security products, extensions that are good at detecting phishing and malicious websites.</p></blockquote><p></p>
[QUOTE="SeriousHoax, post: 849300, member: 78686"] I share the same view as [URL='https://malwaretips.com/members/gandalf_the_grey.52096/']Gandalf_The_Grey[/URL]. In general I'm against the principle of HTTPS scanning and allowing MITM because it's kind of security through obscurity but seeing it's advantages tempting me to accept it. So, it's tricky to simply say Yes or No on this. It's nice to have this feature but it's not a must have feature. Kaspersky, Avast, ESET, Bitdefender they're doing this for more than 4-5 years now but many other reputable AVs haven't implemented this. Norton is one of many great products which doesn't have this feature but they're doing just fine without it. Emsisoft is reluctant to ever do this. One thing to remember is that, whether your AV does SSL scanning or not, if a malware touches your hard drive it should be detected. So, in normal day to day browsing for an average user SSL scanning won't be very beneficial. In terms of security regarding SSL scanning, AVs have become better at it and the last time vulnerability regarding this was discovered in 2017 and since then nothing worrying has happened. So, I think in general users can avoid SSL scanning by AVs but if the AV they use have this option then enabling it for online purchasing, transaction might provide a bit extra protection. But in your worst day this can actually be the total opposite but that would be extremely rare. I think it's more important to invest in security products, extensions that are good at detecting phishing and malicious websites. [/QUOTE]
Insert quotes…
Verification
Post reply
Top