from Hacker News

Avast Anti-Virus for Mac Uses “Man in the Middle” Scheme to “Protect” You

by lsmod on 6/2/15, 10:40 AM with 5 comments

  • by noir-york on 6/2/15, 11:02 AM

    Er... yes. That's how nearly all web security products work. The only way for them to monitor (and filter) HTTPs content is the MITM + fake cert. This is done everywhere: from that websense or bluecoat proxy appliance at the office, to the boxes by someone like a Sandvine doing DPI on telco core networks.

    Of course, this is unacceptable - but there are very few alternatives. For the record, we - rawstream - don't do this as its crazy to compromise security like this. So we had to find other means.

  • by lsmod on 6/2/15, 10:42 AM