X
Nhấn vào đây để đến phiên bản di động của trang web.

Diễn đàn trợ giúp

MITM? Https certificate.

Được đăng

Hello. Google and Mozilla recently blocked the government certificate in Kazakhstan. And what about Kaspersky Lab? The Kaspersky products are already banned for use in the U.S. government.

There is also information that the Kaspersky laboratory is cooperating with special services. After all, Kaspersky himself and his colleagues are former employees of the KGB high school. This is not a secret or speculation, but well-known information.

I recently installed kaspersky internet security. Then I decided to see the certificate in many browsers and saw it https://imgur.com/a/o4B0HG0

It turns out Kaspersky decrypts the traffic. It automatically installs its certificate. Root certificate. https://support.kaspersky.ru/common/compatibility/14620 Now all my data can be compromised. What is it if not MITM?

Maybe you should block this certificate like Kazakhstan?

Hello. Google and Mozilla recently blocked the government certificate in Kazakhstan. And what about Kaspersky Lab? The Kaspersky products are already banned for use in the U.S. government. There is also information that the Kaspersky laboratory is cooperating with special services. After all, Kaspersky himself and his colleagues are former employees of the KGB high school. This is not a secret or speculation, but well-known information. I recently installed kaspersky internet security. Then I decided to see the certificate in many browsers and saw it https://imgur.com/a/o4B0HG0 It turns out Kaspersky decrypts the traffic. It automatically installs its certificate. Root certificate. https://support.kaspersky.ru/common/compatibility/14620 Now all my data can be compromised. What is it if not MITM? Maybe you should block this certificate like Kazakhstan?
Đính kèm ảnh chụp màn hình
Trích dẫn

Chi tiết hệ thống bổ sung

Phần bổ trợ đã cài đặt

None

Ứng dụng

  • Chuỗi đại diện người dùng: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36

Thông tin chi tiết

philipp
  • Top 25 Contributor
  • Moderator
5291 giải pháp 23374 câu trả lời
Được đăng

Hi, these cases can not really be compared as Kaspersky products give you the choice if you want to have this feature on or off: How to troubleshoot security error codes on secure websites

If you don't trust the vendor of your anti-virus product you should rather uninstall it...

Hi, these cases can not really be compared as Kaspersky products give you the choice if you want to have this feature on or off: [[How to troubleshoot security error codes on secure websites]] If you don't trust the vendor of your anti-virus product you should rather uninstall it...
Bài viết này có hữu ích với bạn không?
Trích dẫn

Người tạo câu hỏi

Not certainly in that way. In Kazakhstan, citizens are also given the choice whether to install a certificate or not. This is official information.

In Kaspersky products, everything is a little different. You can test any of the products yourself. (I did the tests.) And make sure that during the initial installation you will not have that choice. This is the first problem. During installation, the root certificate will always be installed. You cannot refuse. And windows will not even ask you for confirmation. So most people don’t even know about it.

The second problem is that Kaspersky uses the certificate to decrypt https traffic. Many antiviruses decrypt traffic to scan for viruses. This is normal. But only a few do it this way.

Given the level of freedoms in Russia, given the fact that Kaspersky Lab and its specialists officially participate in meetings of the State Duma, taking into account communication with special services, I believe that installing a certificate carries enormous risks.

I propose to consider this problem in more detail.

Not certainly in that way. In Kazakhstan, citizens are also given the choice whether to install a certificate or not. This is official information. In Kaspersky products, everything is a little different. You can test any of the products yourself. (I did the tests.) And make sure that during the initial installation you will not have that choice. This is the first problem. During installation, the root certificate will always be installed. You cannot refuse. And windows will not even ask you for confirmation. So most people don’t even know about it. The second problem is that Kaspersky uses the certificate to decrypt https traffic. Many antiviruses decrypt traffic to scan for viruses. This is normal. But only a few do it this way. Given the level of freedoms in Russia, given the fact that Kaspersky Lab and its specialists officially participate in meetings of the State Duma, taking into account communication with special services, I believe that installing a certificate carries enormous risks. I propose to consider this problem in more detail.
Bài viết này có hữu ích với bạn không?
Trích dẫn
Đặt một câu hỏi

Bạn phải đăng nhập vào tài khoản của bạn để trả lời bài viết. Vui lòng bắt đầu một câu hỏi mới, nếu bạn chưa có tài khoản.