I am not sure if your example with Eset can be accepted as a test for all web filtering protection methods.
1- It is correct, so I disabled adguard and then disabled ESET I left only the extensions of Emsisoft and Windows Defender and the coinminer went unnoticed, you can even test, the link of the site that I did the simple test is in the comment itself just click on some Movie with adblocker disabled and you'll see malicious windows opening by themselves.
WD Network Protection is not the web browser extension - it is different from WD Browser Protection for Google Chrome.
You are correct are different, I tested as a common user with basic protection and some extension in the case WD browser protection and yet Emsisoft browser is as previously said ordinary user will not know advanced options and even secure extensions I believe That 99% of users find that only the default WD after Windows installation are already secure.
Exactly, replacing certificates breaks the working system (SSL handshake) and makes the browser more vulnerable to MitM attacks. AV companies claim, that they have already handled it, but hardly considering, that even Kaspersky 2019 suffers from it. Web SSL filtering is the first I disable.
Thanks for the link and your answer.
They work differently, they block accessing IPs/domains before they get loaded into the browser, acting like a firewall/HOSTS.
The issue happens only when you have to inject your certificate to browsers and then intercept traffic. Adguard does decent and they usually try to use the latest protocols available but the chance that an issue appears it is still there.
Assumption.
I still don understand it. It also does makes no sense to me that AV companies are so stupid to use unsafe ways to read encrypted data and AdBlocking can do the same by just using API's? Why would not AV companies use those API's,? When those API's were sufficient, why would EMSISOFT develop an extension, just for the purpose to get more information from INSIDE the browser?Wikipedia said:
I said annoy and average user so nope. Issues are for the ability to filter at the same degree and quality plus keep pages looking the same.
Thanks, or the link.
Feel free to believe the blog of the VB-editor, but it is [a seven character word which will be moderated and starts with a B and ends with a T]. To conclude with the author of the VB-blog: yes breaking security integrity for security sake COULD (in theory) improve security, that is true. It is just not likely that only goodware uses this compromise and the chance of running into a risky web interaction of the security unaware users even decreases the likely hood of this comprise paying out well.Virus Bulletin said:
YEP but as far as I know DNS filtering only can see TCP data (IP and domain, see WIKI), so how do they achieve HTML, script and CSS filtering?
They don't hence why i said it doesn't have the ability to filter at the same degree and quality as normal extension or whatever filtering.
Thanks for the update. My knowledge on this topic is from another century.
they don't, however, they can block third-party domains that host ads.dns filtering is useless cuz it gets bypass if you want to use a VPN or proxy.
Simple. They're able to block ads on all devices across your entire network.
