-1

After a fresh install of Firefox, I had to find the Kaspersky certificate in Windows 10 and to export it. After, I imported it in Firefox (in "options" search for "certificate"). Before that, Firefox wouldn't open Youtube or Google, saying they were not trusted…

Why the hassle? AFAIK, Firefox can check certificates. It does so in Ubuntu, where there is no Kaspersky. So why can't Kaspersky just leave certificates alone and transmit them to Firefox? Is there any advantage?

Mike
  • 14,010
  • 29
  • 101
  • 161
Alain Reve
  • 163
  • 1
  • 1
  • 11

1 Answers1

2

Kaspersky plays man-in-the-middle so it can read communication that should be kept private. The reason for this is that they claim that malicious communication can be identified. It is done by breaking the crypto system…

Mike
  • 14,010
  • 29
  • 101
  • 161
Daniel Fisher lennybacon
  • 3,865
  • 1
  • 30
  • 38
  • So Firefox was right :). Maybe I should get rid of Kasperski. Does it report home? – Alain Reve Mar 02 '21 at 17:03
  • 1
    Probably. I see a bigger issue in the fact that such systems had security issues themselves, which can be used by hackers to show you a website and make you think it is the real one, beside the fact that ALL tragic can be read by the man in the middle. – Daniel Fisher lennybacon Mar 02 '21 at 18:53
  • Penetration to the encrypted traffic can be easily disabled, so no MITM approach will be used at all. – Mike Mar 04 '21 at 17:57
  • I'm not sure... I can "disable" it and maybe it will still do it... I've got nothing particular to hide, but I hate being spied upon. I feel as though someone walked up to my house and started staring in through the window. Oh well, it's not my usual machine, normally I use Kubuntu. – Alain Reve Mar 05 '21 at 17:49