Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ClamAV antivirus not working for HTTPS

    Scheduled Pinned Locked Moved Cache/Proxy
    5 Posts 3 Posters 521 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z
      zaber01
      last edited by zaber01

      Hello to every one !!
      I have one issue with clamAV antivirus.
      I enable the squid and squid guard for domain blocking.
      As according to my knowledge , to scan the HTTP sites we have to enable the transparent proxy and for HTTPS we have to enable ssl interception and i did it for both.( in ssl interception I selected spice all)
      After that i enable the antivirus.
      The issue is that its working fro http means whenever i am downloading the file from eicar.org(testing virus) by http source file its showing error msg but when i am trying from https source file its allow me to download its hence its not working for https.

      Please help in this.

      1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan
        last edited by

        ClamAV can't do the MITM without the end user being overwhelmed by browser errors.

        That's actually a good thing

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        Z 1 Reply Last reply Reply Quote 0
        • Z
          zaber01 @Gertjan
          last edited by

          @Gertjan Sorry I did'nt get you.

          1 Reply Last reply Reply Quote 0
          • Z
            zaber01
            last edited by

            And if its not capable of doing so then what to do in this case.

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate
              last edited by Derelict

              Scan for viruses on the endpoints. They have access to the data after it is decrypted. Nothing between the server and client does.

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.