09-07-2010 11:08 AM
NIS 2011 (lowered into the Norton Update Center) does not have an e-mail checker HTTP, SMTP, POP3 with SSL?
What a disappointment! One of the things I expected to hear was it was Symantec! But it seems that hearing and did not attend!
I would like an explanation for this lack of interest in developing an e-mail checker with SSL.
09-07-2010 11:59 AM
This is a very good explanation of the issues involved with the scanning of SSL.
09-07-2010 05:49 PM
Ok (understood) tells me one thing: How the Eset and Kaspersky scans this traffic? (both in browsers or e-mail) Thanks
09-07-2010 08:24 PM
It's hard to say what they are scanning as the same limitations apply. This info is on Kaspersky's site:
"To scan encrypted connection Kaspersky Internet Security 2011 substitutes the required security certificate by the self-signed certificate.
Sometimes the programs that establish connection, refuse accepting this self-signed certificate and as a result do not establish connection. Kaspersky Lab's experts recommend disable check of SSL-traffic:"
This is on the Eset site
"By default, ESET Smart Security and ESET NOD32 Antivirus check the POP3 protocol on TCP port 110 and the HTTP protocol on TCP ports 80, 8080 and 3128 for threats to your system.
ESET Smart Security and ESET NOD32 Antivirus 4.0 scan SSL traffic. ESET Smart Security/ESET NOD32 Antivirus 3.0 do not scan SSL traffic, even if the TCP port listed above has been manually entered.
After encrypted traffic has been decrypted, it will be scanned for threats by the antivirus components of ESET Smart Security/ESET NOD32 Antivirus. If you are not using a standard port for email, email messages are still scanned by the antivirus component as soon as they touch the system, which will protect you from any threats."
09-08-2010 03:29 PM
I think Symantec should have at least interest and respect with its customers what it costs to develop an e-mail scanners with SSL (because the "big Symantec" does not offer this extra protection to your home and business users (that's paresis Protection Free) with many limits (will be giving to release an update is to increase protection of e-mail yet this year (or would we have to change security solution? For one the eset, kaspersky, panda, Mcafee) that gives the most listened to your user !!!!!!!
09-08-2010 03:38 PM
I don't know lago. Eset said that it did not scan SSL, and Kaspersky said that it doesn't always work. There are obvious issues with breaking into secure transmissions. I did not check the other developers. I will leave that to you.