目前使用的 Windows 桌面环境杀毒软件更换为 Kaspersky (卡巴斯基),结果在使用过程中发现一个问题。
问题
安装卡巴斯基后大部分网站的证书被卡巴斯基劫持,更换为卡巴斯基的自签名证书,如下图所示。
可见根证书被劫持为 Kaspersky Anti-Virus Personal Root Certificate
解决
参考卡巴斯基知识库可知,这是卡巴斯基的「加密连接扫描」功能导致的。
英文版
Enabling and disabling encrypted connections scan
To enable or disable encrypted connections scan:
- In the main application window, click the Settings button.
- In the left part of the window, in the General settings section, select the Network settings subsection. The network settings are displayed in the right part of the window.
In the right part of the window, in the Encrypted connections scan section, perform one of the following actions:
- Select the Scan encrypted connections check box if you want Kaspersky Endpoint Security to monitor encrypted network traffic.
- Clear the Scan encrypted connections check box if you do not want Kaspersky Endpoint Security to monitor encrypted network traffic.
- To save changes, click the Save button.
中文版
打开主界面,点击左下角的齿轮「设置」。
可见根证书被劫持为
Kaspersky Anti-Virus Personal Root Certificate
解决
参考卡巴斯基知识库可知,这是卡巴斯基的「加密连接扫描」功能导致的。
英文版
Enabling and disabling encrypted connections scan
To enable or disable encrypted connections scan:
- In the main application window, click the Settings button.
- In the left part of the window, in the General settings section, select the Network settings subsection. The network settings are displayed in the right part of the window.
In the right part of the window, in the Encrypted connections scan section, perform one of the following actions:
- Select the Scan encrypted connections check box if you want Kaspersky Endpoint Security to monitor encrypted network traffic.
- Clear the Scan encrypted connections check box if you do not want Kaspersky Endpoint Security to monitor encrypted network traffic.
- To save changes, click the Save button.
中文版
打开主界面,点击左下角的齿轮「设置」。
可见根证书被劫持为
Kaspersky Anti-Virus Personal Root Certificate
解决
参考卡巴斯基知识库可知,这是卡巴斯基的「加密连接扫描」功能导致的。
英文版
Enabling and disabling encrypted connections scan
To enable or disable encrypted connections scan:
- In the main application window, click the Settings button.
- In the left part of the window, in the General settings section, select the Network settings subsection. The network settings are displayed in the right part of the window.
In the right part of the window, in the Encrypted connections scan section, perform one of the following actions:
- Select the Scan encrypted connections check box if you want Kaspersky Endpoint Security to monitor encrypted network traffic.
- Clear the Scan encrypted connections check box if you do not want Kaspersky Endpoint Security to monitor encrypted network traffic.
- To save changes, click the Save button.
中文版
打开主界面,点击左下角的齿轮「设置」。
在设置页中,点击左侧功能「附加」,选择其中的「网络」选项。
在「网络设置」中关闭「加密连接扫描」功能,同时建议禁用「流量处理」功能(注入脚本可能导致某些网站工作异常)。
在「网络设置」中关闭「加密连接扫描」功能,同时建议禁用「流量处理」功能(注入脚本可能导致某些网站工作异常)。
在「网络设置」中关闭「加密连接扫描」功能,同时建议禁用「流量处理」功能(注入脚本可能导致某些网站工作异常)。
附录
参考链接
- Enabling and disabling encrypted connections scan - Kaspersky
- Explaining Avast’s HTTPS scanning feature - Avast
本文由 柒 创作,采用 知识共享署名4.0
国际许可协议进行许可。
转载本站文章前请注明出处,文章作者保留所有权限。
最后编辑时间: 2020-07-13 20:20 PM