Avast Anti-Virus for Mac Uses “Man in the Middle” Scheme to “Protect” You

Er... yes. That&#x27;s how nearly all web security products work. The only way for them to monitor (and filter) HTTPs content is the MITM + fake cert. This is done everywhere: from that websense or bluecoat proxy appliance at the office, to the boxes by someone like a Sandvine doing DPI on telco core networks.<p>Of course, this is unacceptable - but there are very few alternatives. For the record, we - rawstream - don&#x27;t do this as its crazy to compromise security like this. So we had to find other means.

Found this from this[0] post, which contains the second part[1]<p>[0]<a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=9643857" rel="nofollow">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=9643857</a><p>[1]<a href="https:&#x2F;&#x2F;itnerd.wordpress.com&#x2F;2015&#x2F;05&#x2F;21&#x2F;avast-responds-to-my-post-about-their-anti-virus-product&#x2F;" rel="nofollow">https:&#x2F;&#x2F;itnerd.wordpress.com&#x2F;2015&#x2F;05&#x2F;21&#x2F;avast-responds-to-my...</a>