Interference With Certificates By Bd Makes Safe Site Unusable
When trying to book a ticket at www.eno.org I was prevented because Internet Explorer 9 reported "Content was blocked because it was not signed by a valid security certificate. "
When I checked the details of the invalid certificate, I found:
C = RO
O = Bitdefender
OU = IDS
CN = Untrusted Bitdefender CA
It appears Bitdefender has somehow replaced the valid certificate for the booking page with some dummy, untrusted one.
After wasting a LOT of time, I found a semi-related tip here to turn OFF 'Scan SSL'. I didn't think that would be relevant because the booking page URL/connection type is:
Connection: TLS 1.0, RC4 with 128 bit encryption (High); RSA with 1024 bit exchange
... i.e. *not* an HTTPS address. But after turning off 'Scan SSL', the website worked correctly and the Certificate details changed to:
CN = VeriSign Class 3 Secure Server CA - G3
OU = VeriSign Trust Network
O = VeriSign, Inc.
C = US
I find it most concerning that BD tampers with Certificates, and not only tampers, but in a bad way, making a safe and secure site unusable.