« previous next »
Pages: [1]   Go Down

Author Topic: SSL scan override and ads  (Read 1310 times)

0 Members and 1 Guest are viewing this topic.

Offline Ch3vr0n

  • Jr. Member
  • **
  • Posts: 35
SSL scan override and ads
« on: November 21, 2019, 11:26:37 PM »
Problem 1. I run a few sites that are protected with Let's Encrypt certificates. Up until a few days ago, when clicking on the lock icon in the address bar, firefox would properly show "secured by let's encrypt" or something like that. Now i just noticed this has changed and has been overwritten by "Verified by Avast Web/Mail shield" and "Connection verified by certificate issuer not recognised by Mozilla".

I want that override gone, and restored back to the way it was. What setting(s) do i need to change.

Problem 2. As probably many have, even paid products such as my Internet Security, still push op ads to advertise other products (like secureline) i have no interest in. I would like to stop seeing that crap. Paid products should not push/contain ads for other products. I found this topic https://forum.avast.com/index.php?topic=230644.0 but i can't see any setting like that for Internet security. Please advise
Logged

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89053
  • No support PMs thanks
Re: SSL scan override and ads
« Reply #1 on: November 21, 2019, 11:45:30 PM »
1. They are still protected by that certificate, only avast users would see the avast certificate as to be able to scan https traffic it has to do that intercept.  I don't believe there is a way/setting of removing the certificate, effectively you would have to disable all https scanning in the Web Shield customization settings (not for specific sites).  That would leave you vulnerable to malware on https sites, just because they are https doesn't mean they are clean.

What Firefox and Avast version are you using ?

2.  The setting is there, just that Asyn is using the German language version of Avast Premium.
See attached English Version of the UI > Settings > General > Personal Privacy.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline HK

  • Avast team
  • Full Member
  • *
  • Posts: 133
Re: SSL scan override and ads
« Reply #2 on: November 22, 2019, 03:13:54 PM »
Thanks you DavidR for explanation. Ch3vr0n, you can find more information about HTTPS and certificates in this blog post.

https://blog.avast.com/2015/05/25/explaining-avasts-https-scanning-feature/

Best regards,
HK
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
Re: SSL scan override and ads
« Reply #3 on: November 22, 2019, 04:14:39 PM »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Ch3vr0n

  • Jr. Member
  • **
  • Posts: 35
Re: SSL scan override and ads
« Reply #4 on: November 23, 2019, 01:13:56 PM »
I know what SSL certificates are and https. That wasn't the question @HK. The question was to DISABLE the avast override of HTTPS scanning. They admit it themselves its a MITM attack, which is malicious behavior BY NATURE. It shouldn't be doing that.

Either way, problems have been solved. Settings disabled.
Logged
Pages: [1]   Go Up
« previous next »