security123

Level 21
Almost all major AV vendors scanning HTTPS connections by default to be able detecting malicious activities on all websites, there are working real security experts for these companies, so why those people believe it's necessary to scan even on HTTPS ;)
Microsoft Defender don't destroy TLS ;)

these security experts AV manufacturer only want selling their product so they include as much as possible features and "shine" with looks-important stuff like https scanning. In fact this only makes trouble and decrease security.
HTTPS scanning is only a option for companies.
 

silversurfer

Level 62
Verified
Trusted
Content Creator
Malware Hunter
Just playing devils advocate :p, but has anyone proved it was better, or are we just basing it on AV vendors telling us it is better?;)

I guess the question is, what ate they actually trying to stop? If it's downlowing files, then what's the purpose of the file scanner? Shouldn't it be scanning all downloaded files? I guess we could say detecting credit card skimmers, but many of those still go undetected by most AVs. So i guess the question is, what is the real purpose of scanning https traffic? After all its been known to cause quite a few issues, as https wasn't designed to work in this manner.

Not saying it's not worth it, just trying to inject some thought into the conversation. After all all I've seen from AV companies is them s aying, to stop the bad guys, but in all honesty, that's a pretty generic statement.:cool::emoji_beer:
Your point of view isn't more true than my point, even if we believe we said the truth, so it's useless to discuss further nothing will change our opinions!

Microsoft Defender don't destroy TLS ;)

these security experts AV manufacturer only want selling their product so they include as much as possible features and "shine" with looks-important stuff like https scanning. In fact this only makes trouble and decrease security.
HTTPS scanning is only a option for companies.
You must be very arrogant to believe that your technical knowledge is higher compared to verified security experts, but anyway you can believe what is true in your own world of security...
 
Last edited:

security123

Level 21
You must be very arrogant to believe that your technical knowledge is higher compared to verified security experts, but anyway you can believe what is true in your own world of security...
That aren't my words. I just say that TLS scanning is bad and break your security and that it only make sense for companies, not for end user.
Please read my post again.

Anyway i don't trust all AV companies just because they has security experts. Trust is based on many things
 

Jan Willy

Level 2
Your point of view isn't more true than my point, even if we believe we said the truth, so it's useless to discuss further nothing will change our opinions!


You must be very arrogant to believe that your technical knowledge is higher compared to verified security experts, but anyway you can believe what is true in your own world of security...
With the risk to go further offtopic, in my view deserves the situation a little bit nuance. So that we at the end can say that everybody was right. Https says nothing about the content of a site. How can we be sure that such a site not is hacked? Safe or not, you see always the (green) padlock in the browser. You have to consider if the risk of an abused https-site (for instance your banking site) is big enough to trust your AV-program to scan (= read) the related internet traffic. If you don't want that, then simple deactivate https-scanning in the options of your AV-program.
 

Gandalf_The_Grey

Level 32
Verified
I have some free time today and performed a test
15 links from urlhaus. No time for phishing

Extensions:
Chrome's safebrowsing: block 12/15 + warn: 3/15 = 15/15
Bitdefender: 14/15
Malwarebytes: 10/15
Avira: 8/15
Norton: 7/15
Emsisoft: 5/15
Microsoft WDBP: 5/15 (tested a few times, same result)

DNS:
neustar (Threat Protection): 14/15
nextDNS: 14/15
quad9: 9/15
adguard family: malware 2/15 | adult 4/15 = 6/15
cleanbrowsing secure: 5/15
cloudflare malwares+adults: 2/15
openDNS family: 2/15
Thanks for testing again (y)
My results:
Microsoft Edge SmartScreen: block 11/15 + warn 2/15 = 13/15
uBlock Origin with (new) Online Malicious URL Blocklist: block 13/15
Bitdefender TrafficLight: block 15/15
 
Top