• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

This forum thread needs a solution.
Kudos0

Norton and POP3 SSL Ports

I've read many posts concerning Norton scanning e-mails coming in from an SSL port and find the responses from Norton not quite accurate.  What I have read is that Norton will not support the scanning of e-mails coming through from an SSL port, but it will support POP3 servers.  My guess is they are not banking on us being able to put 2 and 2 together.

Like what I've read concerning Verizon e-mail accounts, AT&T users also have their e-mails coming through those same  POP3 SSL ports.  So while the statement about Norton being able to scan POP3 servers may be true, what is not true about it is if the e-mails come through SSL ports on POP3 servers.  Not only does it have a major impact on the Anti-virus feature of Norton, it also has a major effect on the Norton Anti-Spam feature by rendering them both useless.

What this raises, in my opinion, is being able to justify the cost of buying Norton Internet Security for 5 devices each year.  One thing I've noticed recently is a lot of good press from security professionals concerning Windows Firewall and Windows Defender in Windows 10.  While we tend to rely on Norton Identity Safe for managing passwords, since I never know if it is going to actually fill in my credentials each time I visit a site, there are products out there (i.e. RoboForm, True Key from Intel, etc.) that are actually much more reliable and have also gotten very good press.  Regardless of what their management may think, their old Network Map was a very valuable tool because it was also configurable.

I have been a very long time Norton user, but one thing I've noticed is that as time has gone on, functionality has shrunk while price keeps inching up.  I only have a few days left on my current subscription so maybe it is now time to seriously look at my options.  It's a shame...it really did used to be an excellent product.

Replies

Kudos1 Stats

Re: Norton and POP3 SSL Ports

I agree, the documentation concerning POP3 and SSL is a little unclear.  I think what is meant is that Norton does support POP3, but not IMAP.  Separately, Norton does not support SSL.  Email AV scanning is actually a redundant protection that is not really a necessity, as Auto-Protect provides the same level of security when you access an attachment.  Antispam may be a feature you find valuable and it is true that encrypted ports prevent using it.  However with email providers offering spam blocking and many email clients now including spam filtering, the need for a security program to provide that functionality is not as important as it once was.  When evaluating a security solution for your PC, I would recommend looking at a product's overall effectiveness in blocking malware as the most critical requirement, rather than basing a choice on features that are now more convenience holdovers than essential protections.

Kudos0

Re: Norton and POP3 SSL Ports

In adition to what SOJ has said, if you're vigilant with emails and don't click on unknown links/senders, you should be ok.

Windows 10 Home X 64 Norton Security Premium Current
Kudos0

Re: Norton and POP3 SSL Ports

Hello

I use Verizon and have for many years. Norton only scans ports 25 and 110, Verizon requires ports other than 25 and 110, so my email scanning doesn't do anything although it is turned on in Settings. I don't open any email attachments unless they are from someone I know and expect the attachment.  The nice thing about Norton is that the protection is multi-layered. Scanning won't work, but saving does work and another layer in Norton will kick in and take care of any possible malware.

I don't click on links from emails. I will copy and paste them into my browser or even into Google or into VirusTotal. I have been  online since before Windows 98 and I think I got 1 email virus. Norton caught it back then.

Thanks.

Success always occurs in private and failure in full view. Windows 7 Pro 64 bit NSBU 22.17.0.183 Core Firmware 282 I E 11 Chrome latest version.
Kudos0

Re: Norton and POP3 SSL Ports

Since I don't do those activities without having a high level of trust in who it is from, in my opinion it is still lacking...especially if what they advertise has known limitations.  The various sites I have e-mail accounts really don't do as good a job in preventing SPAM so having a good anti-spam would be valuable.

Where I'm having the issue is Symantec claims to have effective Anti-virus and effective Anti-spam but don't list the limitations of their product until after you buy and install it then research the online help.  I found that information purely by accident.

Kudos0

Re: Norton and POP3 SSL Ports

I know that scanning incoming email is redundant, if Norton can detect malware or a virus incoming it could also obviously detect it if the item is opened, or accessed.

But ideally I think most people would like to have a clean system free of any malware and viruses.  It would be pretty stupid to be opening attachments just to see if they were good or bad, so you kind of have to live with the fact that your system might not be perfectly clean. 

I liked the old way of doing things, I liked it back when I was using XP with outlook express and my email accounts were all using non-ssl ports.  Norton would scan the incoming mail and remove any malware before it could reside on my system.

Now, using windows 7 and Outlook I still have a couple email accounts using non-ssl ports but Norton never comes up with an incoming detection.  But because of Norton Anti-Spam, most of the messages that could be carrying something bad get routed into the spam folder that I never access or even think about opening them.  So I may not have a perfectly clean system but at least everything is "out of sight" and not in one of my main mail folders.

Now that it's getting very hard to find unencrypted POP accounts soon I won't be able to rely on anti-spam either.

I agree that email providers can have good anti-spam filters but if you have multiple email providers it's so much easier to filter everything with your email client than multiple providers.

I also think this needs to be standardized on the client level, all email gets unencrypted and then "passed through" the users antivirus before entering the clients inbox. Otherwise Anti-virus companies would have to make constant updates for multiple clients (like the plugins and extensions for different browsers).

But sooner or later something needs to be done better, emails will always be a vector for infections and spam always increases and will never go away.

Dave

Kudos0

Re: Norton and POP3 SSL Ports

Another thing to think about.  If Norton could sniff into your encrypted email, so could  malware. The idea of encrypted connections is to protect the content from being scanned or read.

So you can choose a secure connection with no scanning, or a less secure connection to allow a security program to access the emails.

Things happen. Export/Backup your Norton Password Manager data.
Kudos0

Re: Norton and POP3 SSL Ports

Encrypted mail is only encrypted during the transfer, it's not encrypted after it is received.

The same thing happens with https websites (like this one), more and more websites are using encryption and you would not expect a AV company to use that as an excuse for having your system compromised.  Norton will detect malware or viruses served through encrypted Https websites because just like encrypted mail, once the transfer or download is completed it's not encrypted anymore.

Dave

Kudos0

Re: Norton and POP3 SSL Ports

It can do the scan once it is received.

But people are missing the point.  Symantec does not tell you about those important limitations upfront.  If they say it is going to do Anti-Spam but there is a caveat to it, that's what should be known uipfront. nn If they state they provide Anti-virus for e-mail but there is a limitation, that should be known upfront.  The average person is not going to necessarily know all of the tech speak concerning ports and whether it is SSL or not.

Letting people know upfront on limitations is not something new...companies do it all the time.  Sometimes it's in "Minimum Requirements" and sometimes it is just an * item on the box you have to read. 

Kudos0

Re: Norton and POP3 SSL Ports

Hello

With so many users just buying a key often, there is no box involved. The programs today are all downloads or almost all downloads. Office users can use Outlook to do the spam filtering.

Dave, you aren't the only one who misses the good ole days of XP and Outlook Express and scanning of emails.

Thanks.

Success always occurs in private and failure in full view. Windows 7 Pro 64 bit NSBU 22.17.0.183 Core Firmware 282 I E 11 Chrome latest version.

This thread is closed from further comment. Please visit the forum to start a new thread.