Jump to content

Security of ESET update files


Recommended Posts

  • Administrators

Using SSL would ensure the authenticity of the server. To ensure the integrity of update files, they are signed so any attempt for MitM attack would fail as the updater would refuse fake/hacked update files.

Link to comment
Share on other sites

  • 2 weeks later...
  • Administrators

OK, so you're saying the server authenticity isn't ensured, because it's not using SSL ?

 

And how are the update files signed - what kind of signing ?

 

The point is that ESET would not accept unsigned or modified update files. It's not important whether they are downloaded from a mirror or from ESET's servers, however, those who want may provide mirror via https as it's fully supported by the updater.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...