Why SSL filtering is not set by default?

Discussion in 'ESET NOD32 Antivirus' started by loverboy, Nov 21, 2010.

Thread Status:
Not open for further replies.
  1. loverboy

    loverboy Registered Member

    Joined:
    Mar 25, 2009
    Posts:
    59
    Why SSL filtering is not set by default?

    I have not checked SSL filtering and the "https eicar zip file" is downloaded regularly on my desktop.
    What is worse is that the "zip" file can be moved here and there, into other disks or folders without any warning.
    Shouldn't a warning appear when that file is accessed or copied/moved or whatever operation the OS does on it?
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    not everybody has use for that setting. I want to move zipped files here and there without AV being concerned. I prefer that the only time AV needs to act is if and when malware is detected on access.
     
  3. loverboy

    loverboy Registered Member

    Joined:
    Mar 25, 2009
    Posts:
    59
    What do you mean by "detected on access"?
    Is burning "dangerous" files into a CD considered "detection on access"?

    Anyway... why "not everybody has use for that setting"?
    Isn't everybody accessing an https site need it?
     
    Last edited: Nov 21, 2010
  4. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    if an infected zip file accessed as in reading and or expanding zipped file contents
     
  5. vtol

    vtol Registered Member

    Joined:
    Apr 8, 2010
    Posts:
    774
    Location:
    just around the next corner
    NOD's SSL protocol filter scans the https data stream for malicious code. so far there are no cases where malicious code is being served off https websites - afaik. a different kettle of fish though is the scanning of SSL encrypted email protocols, the probability of something spreading this way a bit higher
     
Thread Status:
Not open for further replies.