0

Recently, Thunderbird upgraded to version 78.4.0, from version 68. After the update, I couldn't receive any email, from any server whatsoever.

After considrerable reserach, I disabled "ssl/tls protocol filtering" in Eset Internet Security. Now I can receive emails without any issue.

However my doubt remains: have I broken something? What does "ssl/tls protocol filtering" actually do? Is it something useful? Should I turn it back on, and search for the right settings, so I can receive emails but leave the setting on as a whole?

Improve this question
8
  • 1
    It breaks secure traffic by allowing ESET to otherwise scan encrypted connections. In other works it allows ESET to scan the emails received. It’s primarily designed to scan the HTTPS connections, by breaking the security, and using an insecure certificate signed by ESET instead of the certificate that is supposed to be used. It’s a useless feature,
    – Ramhound
    Commented Nov 3, 2020 at 22:38
  • @Ramhound Why do you think ESET issued certificate is insecure? Any details on that? Also why scanning of incoming content should be useless feature? Why would one install security software if it should not scan content downloaded from the internet (most of it is going through SSL nowadays).
    – ge0rdi
    Commented Nov 4, 2020 at 6:58
  • @ge0rdi - Because it literally breaks secured HTTP connections. It allows a third-party to scan your encrypted traffic. I have no doubt ESET uploads some of that data to themselves as in the name of improving their engine or in the name of security. Don’t get me wrong any security product that scans encrypted secure traffic is insecure it’s not limited to ESET
    – Ramhound
    Commented Nov 4, 2020 at 11:50
  • @Ramhound Do you have any more info on allowing third-party to scan your encrypted traffic? I though ESET generated certificate is unique per-machine. Regarding uploading data, don't you think there are other sensitive information on machine that security software has access to already? Installing security software is about trust. If you don't trust your security vendor then why to use their products in first place.
    – ge0rdi
    Commented Nov 4, 2020 at 12:00
  • 1
    @1NN - Your AV could scan your emails if you used an add-on for whatever client you used. You should scan the emails as they are received on the email sever itself. You shouldn't lower the security of the connection to the client/server to scan emails, scan the emails as they are received, plently of options there.
    – Ramhound
    Commented Nov 4, 2020 at 16:09

0

Reset to default

You must log in to answer this question.

Browse other questions tagged .