After 4 hours wondering why I was unable to log in to our website, view my homepage (https://www.google.co.uk/) or view this forum, I tracked it to avast’s web shield. Specifically the https scanning.
It is the extremely poor implementation I was talking about; blocking nearly all https connections (Google, my website, this forum, my bank etc. This was all in Firefox. Did they even test it?
On a side note, why does the site require a captcha for every post, when I am logged in (with HTTPS ironically)? The captcha takes 5 or 6 tries before I guess the correct characters (and each time i’m incorrect I lose what I’ve typed (unless I copy to clipboard first. The audio even has too much noise to be discernible. All very sloppy and unprofessional.
Verified the same: “Page Cannot Be Displayed”. No warning from Avast 2015 that this is as a result from HTTPS Scanning. Turning this feature off and site is good; again this is not for all HTTPS sites.
Also Avast 2015 Free is keeping this PC from entering Sleep Mode (S3).
I want to add some information about this isse from my side:
I am an employee of Electronic Arts, and I maintain the EA browser game “Command and Conquer - Tiberium Alliances”.
Recently, we deactivated the SSLv3 protocol on all of our game hosts to avoid any security breaches by the POODLE attack, setting TLS 1.0 as the minimum SSL protocol.
After that, several users reported that they could not reach the game with any browser anymore, with the same error as the OP describes. It turned out, that this is caused by the Scan SSL feature in Avast (ESET has the same problem, btw). As soon as this feature is deactivated, the users can reach our game with every browser normally.
For reproduction, try to access the fowllowing URL with activated Scan SSL feature in Avast 2015.10.0.2206: https://prodgame07.alliances.commandandconquer.com/ with any browser.
Works on windows 8.1, IE11 AIS 2015 all bells and whistles on :) But I have disabled SSL 2.0 and SSL 3.0 in internet options
Well, I have no problem, some of our users have. I am merely adding information and experience for this issue which seems to have the same root cause hoping that it can help to resolve the issue for everybody. If you can provide me with a way to contact the Avast developers directly, I would be happy to use it.
Apart from that, yes you are of course right: The relatively low number of complaining users tells me that there seems to be more factors involved to cause this problem. As soon as I know a perfect reproduction, I am more than happy to share my knowledge.
FWIW, even though it was suggested, and would also be a good idea to start your own topic, I just wanted to let you know you’re not alone with this problem and that I too noticed this with my laptop. But for me it started back with v2014. But it happened so much, even with the lid closed, my laptop was turning on and I got to the point and said screw it and now just turn it off all the time rather then let it go into sleep mode just so it can turn back on without my wanting it to.
Okay, so “Enable HTTPS scanning” and “Scan SSL” as mentioned earlier in this thread are one and the same. Thanks. I knew about HTTPS scanning, but thought maybe there was a separate setting named specifically “Scan SSL”. You have to admit, there are a lot of panels to look through.
For what it’s worth, I’m having absolutely zero problems with https: sites with that setting enabled (on Win 8.1 Pro x64). As I mentioned above, the link provided to the “IIS Welcome graphic” (in many languages) works fine here.