Sure, antivirus software does inspection at the endpoints. Guess what: they usua... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		palant on Feb 6, 2023 \| parent \| context \| favorite \| on: Weakening TLS protection, South Korean style Sure, antivirus software does inspection at the endpoints. Guess what: they usually employ their MITM CA for that. :-) It’s not like I haven’t written about that before. Here is a particularly disastrous implementation: https://palant.info/2019/08/19/kaspersky-in-the-middle--what...

fulafel on Feb 7, 2023 [–]

Yep, I think there are ways to do it without a MITM CA but they are more fragile.

There's also this post https://www.securityweek.com/antivirus-software-has-negative...

Both are bad but network level is worse.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact