Jump to content

Archived

This topic is now archived and is closed to further replies.

Recommended Posts

How to disable OCSP in Eset Smart Security 10.0.390?

Share this post


Link to post
Share on other sites

Eset's SSL protocol scanning is an "all or none" setup for certificate validations as far as I am aware of.

You either exclude a specific certificate from being scanned or you disable SSL protocol scanning entirely.

Share this post


Link to post
Share on other sites

I've been disabled SSL protocol scanning settings. Nothing changed. ESS still connects to OCSP servers when I use the browser.

Share this post


Link to post
Share on other sites

I guess for starters, you need to specify the IP addresses you are referring to when you state Eset is connecting to its "OCSP servers."

According to this Eset Knowledgebase article: http://support.eset.com/kb332/ , only the following IPv4 IP addresses are used for:

SSL Certificate check

proxy-detection.eset.com

38.90.226.28
91.228.166.91
91.228.167.91

Share this post


Link to post
Share on other sites

Please do the following:

- enable SSL/TLS filtering
- start logging with Procmon and Wireshark
- disable SSL/TLS filtering
- make ESS connect to an OCSP server
- stop logging
- compress both logs, upload them to a safe location and pm me download links.

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...