Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: REDACTED on August 15, 2015, 06:28:19 AM

Title: A question about: sni32726.cloudflaressl
Post by: REDACTED on August 15, 2015, 06:28:19 AM
For the past couple of weeks I've been receiving this popup daily:   'Avast Web Shield has blocked access to this page because of the following certificate is invalid: sni32726.flaressl.com.
The websites vary, from newspapers, to various forums, including Wilders Security. I've been to cloudflare 's website to try and understand what is going on.
What is confusing is the message that Web Shield has blocked access to the page I'm on. The popup goes away and I always continue doing what I was doing. All seems normal to me, nothing has been blocked. However, it is becoming an annoying daily occurrence.
What is Avast's definition of 'blocked'?
Title: Re: A question about: sni32726.cloudflaressl
Post by: REDACTED on August 29, 2015, 05:22:33 AM
Hi all,
I get the same popup, except in my case the site actually is blocked.

Is there any resolution to this problem?

I'm at avast 10.3.2225, running FF under XP.

Thanks.
Title: Re: A question about: sni32726.cloudflaressl
Post by: REDACTED on August 29, 2015, 05:14:35 PM
Ok, never mind, found the solution in another thread.
Title: Re: A question about: sni32726.cloudflaressl
Post by: DavidR on August 29, 2015, 06:17:54 PM
It could help pjh215 if you posted the link to the other topic.
Title: Re: A question about: sni32726.cloudflaressl
Post by: REDACTED on September 13, 2015, 01:55:05 AM
Agreed. Referencing the actual solution would have been more helpful than just letting us know a solution exists.

Most likely candidate: https://forum.avast.com/index.php?topic=176283.msg1250553#msg1250553 (https://forum.avast.com/index.php?topic=176283.msg1250553#msg1250553).

The actual instructions: https://www.avast.com/en-us/faq.php?article=AVKB189 (https://www.avast.com/en-us/faq.php?article=AVKB189)
Title: Re: A question about: sni32726.cloudflaressl
Post by: DavidR on September 13, 2015, 03:54:04 PM
Thanks for taking the time to search for it and post the links.
Title: Re: A question about: sni32726.cloudflaressl
Post by: bob3160 on September 13, 2015, 06:17:23 PM
For those that don't want to take the time to read:
(http://www.screencast-o-matic.com/screenshots/u/Lh/1437840647533-69944.png)
Title: Re: A question about: sni32726.cloudflaressl
Post by: REDACTED on October 01, 2015, 10:59:17 AM
Disabling HTTPS scan is not a SOLUTION it's a work around.
Am I not more likely to allow viruses and malware onto my PC by following this advice?
I am getting more and more of these warnings, blocking access to what I think are "good" reputable sites.
My work around is to open a sandbox, and disable AVAST in there, while I look at the suspect web page.

Could I somehow update my certificate or is it just something the web sites have to do?
Any reputable site would update its certificates immediately if they were made aware of this issue and that people (customers?) could no longer access their web pages.

Surely AVAST should have a real solution?
Could it not ASK us and we could then allow certain websites access, once we check them out.
The problem appears to be be several "compromised" certificates and there is no way for me to know that a site using these certificates is safe or not.

After many years I am seriously considering using another antivirus.
Title: Re: A question about: sni32726.cloudflaressl
Post by: adw.tokoroa on February 16, 2016, 09:15:17 PM
The "solution" provided states that HTTPS scanning is not supported on XP, but it is my old XP machine that has the popup problem, not my Windows 10 laptop, so disabling it would not be an option.
Title: Re: A question about: sni32726.cloudflaressl
Post by: DavidR on February 16, 2016, 09:47:29 PM
The "solution" provided states that HTTPS scanning is not supported on XP, but it is my old XP machine that has the popup problem, not my Windows 10 laptop, so disabling it would not be an option.

As you say it is supported, as it is on my XP Pro SP3 system using the latest avast version.

For those using an earlier version of avast or not using XP SP3 then it isn't scanning HTTPS. The problem being the API that would be used for https scanning isn't present in XP. So avast came up with another option on how to scan https traffic. That option only works in XP SP3 and was only implemented in the later avast versions.
Title: Re: A question about: sni32726.cloudflaressl
Post by: Eddy on February 16, 2016, 09:51:27 PM
The https scanning issue has been resolved a few versions ago.
Install the latest version and there should not be any problem.