The Scan SSL feature in Web Protection is silently re-enabling itself at bootup on both my laptop (Vista 32b) and desktop (7 64b). According to BD's interface it is still disabled (unchecked), but the feature is most certainly active. To turn it off I have to re-check then un-check the option, at every boot/restart.
I have (or had) this disabled because BD's method of scanning HTTPS traffic prevents both Extended Validation and certificate revocation checking from working in both Chrome and Firefox. I consider having those two layers of security working more important than BD's ability to scan encrypted traffic for the low chance of malware that would not be detected by other BD modules. I would be ok with lacking EV, but the fact that BD's web scanning proxy isn't checking for revocation is concerning.
This bug also has me wondering if other settings are stealth-resetting themselves back to their default state. I am aware of one Profiles option that rechecks itself when the options dialogues are opened. It renders the ability to configure the product totally useless if it's quietly restoring its settings without our knowledge. It's also somewhat disturbing that software I'm supposed to be relying on for security/protection was released with bugs that are so quickly obvious to users.
