Jump to content

ESET replacing site EV SSL certificate with its own?!?


Recommended Posts

Hello,

Just noticed that my site's EV SSL certificate is being automatically replaced by ESET's certificate in all browsers for some unknown reason:

image.png.271f1d0e0cdf29e8af60a03e2e7d7309.png

This is with ESET NOD32 antivirus using default settings.

 

However, for another site (which also uses an EV SSL certificate albeit issued by a different authority) interestingly ESET does NOT replace their certificate in any browser:

image.png.a8554dfd686f99221cd410f747db08f1.png

 

The only way that I could see the certificate actually installed on my site is through disabling ESET's default SSL/TLS filtering:

image.png.cc6a20326d3ed8a5cf5456ee62a2bf17.png

 

So why the discrimination? Very curious of ESET's arguments on this.

Link to post
Share on other sites

Eset maintains an internal whitelist of web sites that are excluded from its SSL/TLS protocol scanning.

Unless things have changed, Eset does not absolutely exclude a web site from scanning because it is using an EV certficate.

Link to post
Share on other sites
Posted (edited)

Sorry but that's plain WRONG! And it's DISCRIMINATION to say the least. Why does it make a difference between two valid EV SSL certificates?

Additionally Firefox doesn't even recognize ESET's certificate:

image.png.b75bff7e9cfe8cea341308039830c2a5.png

 

So how do you think this affects my business and website's credibility? Makes me wonder why I paid the extra $$$ for an EV SSL certificate when an antivirus software comes along and decides UNILATERALLY which site is to be trusted and which isn't ?!

 

Edited by rotate4all
Link to post
Share on other sites
8 minutes ago, rotate4all said:

Additionally Firefox doesn't even recognize ESET's certificate:

Actually it does.

Firefox, Chrome, and Edge all recognize Eset root CA certificate. Otherwise, they would be alerting about it. All FireFox is informing about is the certificate is not one contained within their own internal root CA certificate store. FireFox now defers to the Win root CA certificate store in this situation which does contain Eset's certificate.

Link to post
Share on other sites
Posted (edited)
11 minutes ago, itman said:

Actually it does.

Well, tell that to someone who grew up learning all about Root CA certificates. It'll make perfect sense for them.

Whereas for we regular mortals speak plain ENGLISH and the phrase "MOZILLA DOES NOT RECOGNIZE THIS CERTIFICATE ISSUER" means just that, regarding what technical arguments you may have against it.

So I'm seeing this issue from layman's point of view, where my site's reputation is potentially being undermined by an antivirus software for no apparent reason.

In any case, we wouldn't be talking about these issues here if ESET would not replace our perfectly valid certificate with their own inside the user's browser.

Edited by rotate4all
Link to post
Share on other sites

Holy hell whats with you?

You realize this isn't exclusive to ESET? Other AV's even Firewall solutions perform similar actions. 

You're joking if you think this is quote "plain WRONG! And it's DISCRIMINATION to say the least". 

Man, thank you for the good laugh.

Link to post
Share on other sites

Well you keep on laughing as it seems you clearly missed the point here.

My doubt here is why does ESET exclude some EV SSL secured sites from their SSL/TLS filtering system but not others/all? What are the criterias? In my opinion this is wrong and is discriminating because our EV SSL certificate is just as valid as any others'.

Link to post
Share on other sites
  • Administrators

While EV certificate used to matter and were excluded from filtering by default, this will change within the next few days and all communication will be scanned regardless of the type of certificate used. By the way, there is a big difference in trust between bank domains and ad providers.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...