Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: REDACTED on October 04, 2015, 03:08:37 PM

Title: Invalid certificate popup + Exclusions that don't seem to work
Post by: REDACTED on October 04, 2015, 03:08:37 PM

I've already took a look at some related topics (e.g. Web Shield 2015 is blocking access because "... certificate is invalid:bing.com" (https://forum.avast.com/index.php?topic=161516.0) thread, but also Updated to 2015, Now Chrome is giving me "Your connection is not private" msg. (https://forum.avast.com/index.php?topic=161298.msg1155802#msg1155802) one), and I couldn't find an answer to my problem.

Namely I am experiencing the same issue as OP in the first link thread above. When I try to visit http://genius.com/ (or http://rap.genius.com/) website I get this error text in the Avast's popup right above the clock & other icons/programs in task bar)

Quote

Avast Web Shield has blocked access to this page because the following certificate is invalid: ssl149088.cloudflaressl.com

Okay I thought, it's a well-known & trusted website so I will just put that URL under Exclusions and Avast will stop checking "cloudflaressl.com" so I could visit & browse http://genius.com/. But the problem is that apparently Exclusions do not work at all. I added the "http://*.cloudflaressl.com*" to Web Shield's (Settings, Active protection tab, Web Shield -> Customize, Exclusions tab) and just to be completely sure also under Avast's general Exclusions (Settings, General tab, Exclusions section under "URLs" tab; the other 3 tabs being File paths, DeepScreen, and Hardened mode)

At the moment the only way to visit the mentioned website (http://genius.com/) is to temporarily disable Web Shield! Am I right in assuming think I the other way would be to I un-tick "Enable HTTPS scanning" (Web Shield -> Main settings tab)?

P.S. I am using the latest version 10.4.2233 of Avast Free Antivirus 2015, which I downloaded & installed a bit more (i.e. on 25th September) than one week ago.

Title: Re: Web Shield: invalid certificate msg. and Exclusions that don seem to work
Post by: bob3160 on October 04, 2015, 07:15:24 PM

If you think it's a false positive, send it to Avast: https://blog.avast.com/tag/false-positive/ (https://blog.avast.com/tag/false-positive/)

Title: Re: Web Shield: invalid certificate msg. and Exclusions that don seem to work
Post by: igor on October 04, 2015, 09:18:38 PM

I'd say that messages about an invalid certificate must be related to a https connections, i.e. the http mask most likely wouldn't match.

Title: Re: Web Shield: invalid certificate msg. and Exclusions that don seem to work
Post by: REDACTED on October 06, 2015, 12:46:30 PM

Thank you igor for the hint that it may indeed be related to SSL (https connections); maybe I will just un-tick/check "HTTPS Scanning". And thanks for the 2nd reply to the other poster too. :)

But otherwise any idea on why it appears in this case that "Exclusions" (as mentioned both - Web Shield's under Settings, Active protection, and Avast's general Exclusions under Settings, General tab, Exclusions) don't work?