HTTPS Web Shield.

I was playing around with the EICAR test file.
I noticed that the avast! web shield does not support HTTPS connection scanning.
Why is this? If possible can you implement it?
I will make a video showing this in a minute.

do you know any AV that does?

No. My point is HTTPS only encryptions the connection between the two computers. It is in the clear most of the time after being received.

I already knew some other av can scan the https web page. How about avast!? Is it not necessary to scan the https web content? ;D

There is no content access mechanisms provided with https.
You can scan the root page with Recx Security Analyzer for best policies being implemented or not…
Sucuri Sitecheck also scans https…
Always do an additional IP look-up for issues…
Quttera also fully scans https sites…
Or you land here: htxps://www.titania.co.uk/index.php?option=com_content&view=article&id=53&Itemid=53
Google Safebrowsing is your friend here also for the scanning of potential risky https pages…
Test online SSL version use: http://foundeo.com/products/iis-weak-ssl-ciphers/test.cfm?test_domain=avast.com
Avast did it right, some fail with the weaker still available…

polonus

Thanks for the link. Tested several websites and all looking okay :slight_smile:

Hi Nesivos,

And an additional one for you: http://www.networking4all.com/en/support/tools/site+check/
and
http://www.sslshopper.com/ssl-checker.html

enjoy,

polonus