Author Topic: HTTPS scanning  (Read 4364 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
HTTPS scanning
« on: May 18, 2015, 03:28:52 PM »
Hi
When I try to go to spybot forums i get this from firefox. (see attachment).

I enquired on there forum about it, was instructed to turn off HTTPS scanning, but I do not have it. Clearly see where it should be though. :-\

http://www.trishtech.com/2015/01/fixing-untrusted-connection-problem-resulting-from-avast-antivirus/

They said I should try here.

Offline Rednose

  • Pirate Party Member
  • Avast Überevangelist
  • Massive Poster
  • *****
  • Posts: 3742
  • Bits of Freedom : https://www.bof.nl
    • Nederlandstalig Avast! forum
Re: HTTPS scanning
« Reply #1 on: May 18, 2015, 03:38:19 PM »
No such problem here :-\

What Windows version do you use ? As HTTPS scanning is not ( yet ) available in Windows XP and Vista.

Greetz, Red.

« Last Edit: May 18, 2015, 03:53:52 PM by Rednose »
OS: Win 10 / iOS 17 / Debian 12 / Tails 6
Real Time: Avast Premium Security
On Demand: Malwarebytes
VPN: NordVPN ( NordLynx ) with Threat Protection ( Lite )

REDACTED

  • Guest
Re: HTTPS scanning
« Reply #2 on: May 18, 2015, 03:54:23 PM »
Hi Rednose

Use Vista Home SP2.

Just out of interest, do you have( Enable HTTPS scanning) in your settings in Web shield.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33992
  • malware fighter
Re: HTTPS scanning
« Reply #3 on: May 18, 2015, 03:58:38 PM »
Hi gertty,

This has nothing to do with avast HTTPS scanning, but more with the firefox browser alerting to the fact that that connection is not trusted.
Google Chrome does not give that warning.
I get the following test results: Secure HTTPS Connectivity
Secure Connection Successful
We were able to connect securely to your HTTPS server. This means that your HTTPS server is listening for and also responding to secure requests.
SHA-2 Certificate
Your certificate is signed using the SHA-2 algorithm.
Name Match Successful
The server address which you provided matches the server name that is on the SSL certificate.

SSL verification issue (Possibly mis-matched URL or bad intermediate cert.). Details:
ERROR: cannot verify forums.spybot.info's certificate, issued by '/C=IL/O=StartCom Ltd./OU=Secure Digital Certificate Signing/CN=StartCom Class 2 Primary Intermediate Server CA': Unable to locally verify the issuer's authority.

Trusted   No (No signatures could be verified because the chain contains only one certificate and it is not self signed.)

Not vulnerable to POODLE. forums.spybot.info has a verifiable certificate chain signed with SHA-2, that is NICE.
Not vulnerable to r OpenSSL Heartbleed vulnerability...

So the folks at https://forums.spybot.info/ have to take that up with firefox Mozilla or fix the verification
as it is using a non-valid certification. To visit the site anyway in firefox you can add an exclusion for that page.
Netcraft gibes the site as all green: http://toolbar.netcraft.com/site_report?url=https://forums.spybot.info

By the way Comodo Siteinspector also flags the site as suspicious - Transaction Protection
UNTRUSTED BY MICROSOFT
SSL Issuer: StartCom Class 2 Primary Intermediate Server CA
SSL Expires: 2017-04-23 03:06:13 UTC

Again a SSL certification issue and has nothing whatsoever to do with Avast https scanning.

polonus (volunteer website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Rednose

  • Pirate Party Member
  • Avast Überevangelist
  • Massive Poster
  • *****
  • Posts: 3742
  • Bits of Freedom : https://www.bof.nl
    • Nederlandstalig Avast! forum
Re: HTTPS scanning
« Reply #4 on: May 18, 2015, 04:03:29 PM »
Pol,

Firefox doesn't give that warning to me, and I didn't add an exclusion :-\

Greetz, Red.
OS: Win 10 / iOS 17 / Debian 12 / Tails 6
Real Time: Avast Premium Security
On Demand: Malwarebytes
VPN: NordVPN ( NordLynx ) with Threat Protection ( Lite )

REDACTED

  • Guest
Re: HTTPS scanning
« Reply #5 on: May 18, 2015, 04:06:29 PM »
Hi polonus

Thanks for your reply (wow very detail reply ).
I am not really tech savvy, I will try to do same research.


REDACTED

  • Guest
Re: HTTPS scanning
« Reply #6 on: May 18, 2015, 04:12:15 PM »
Pol,

Firefox doesn't give that warning to me, and I didn't add an exclusion :-\

Greetz, Red.

Was going to edit my post to polonus, and ask that question, you got their before me. :)
 

REDACTED

  • Guest
Re: HTTPS scanning
« Reply #7 on: May 18, 2015, 04:14:37 PM »
No such problem here :-\

What Windows version do you use ? As HTTPS scanning is not ( yet ) available in Windows XP and Vista.

Greetz, Red.

Just noticed this post has been edited, now explains why I haven't, got the box  (Enable HTTPS scanning)
Thanks for that Rednose

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33992
  • malware fighter
Re: HTTPS scanning
« Reply #8 on: May 18, 2015, 04:27:00 PM »
I have a red Calomel (extension) warning in firefox, no public audit info available, untrusted connection
One report on WOT:
Auf htxp://www.safer-networking.org/de/mirrors/
leitet der 1.Haupt-Mirror zu einer unzuverlässigen Seite:
https://www.mywot.com/scorecard/spybot-now.com   "jokalliauer

Secure login (1)
Password will be transmited securely to https://forums.spybot.info/login.php?do=login
Encryption (HTTPS) (1)
Communication is encrypted

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

REDACTED

  • Guest
Re: HTTPS scanning
« Reply #9 on: May 18, 2015, 04:32:28 PM »
Hi polonus

Once again thanks for info :)

Once question, just curious why Rednose didn't, get the warning when he used Firefox and i do.