Excluded domains (domain.tld) are still decrypted
-
<p><strong>Reproduction steps: Add domain.tld (askmrrobot.com) to "Trusted addresses" list to exempt it from being decrypted.</strong></p>
<p><span></span></p>
<p><strong>Actual result: Kaspersky script is still added to the web-site. The only way to make this work is to add "www." or "." to the domain exception. Since the "Trusted addresses" dialog <span style="text-decoration: underline;">specifically</span> lists "example.com" as legitimate format I assume this to be a bug.</strong></p>
<p><strong>Curiously I also reported this to support for KIS where the same happens and just got told that this was "by design"?! To make things worse with KIS you cannot use the "." workaround (invalid format error), so for KES we at least have some way to exclude a whole domain.</strong></p>
<p><span></span></p>
<p><strong>Expected Result: Whole domain, including all sub-domains, should be excluded from decryption.</strong></p>
<p><strong></strong></p>
<p><strong>These are screenshot using KIS, but the same applies to KES:</strong></p>
<p><strong></strong></p>
<p><strong>askmrrobot.com</strong></p>
<p><strong><img src="https://i.imgur.com/BGr0upF.png" alt="" width="487" height="238" /></strong></p>
<p><strong></strong></p>
<p><strong>www.askmrrobot.com</strong></p>
<p><strong><img src="https://i.imgur.com/3cNdouU.png" alt="" width="483" height="214" /></strong></p> -
<p><strong>Reproduction steps: Add domain.tld (askmrrobot.com) to "Trusted addresses" list to exempt it from being decrypted.</strong></p>
<p><span></span></p>
<p><strong>Actual result: Kaspersky script is still added to the web-site. The only way to make this work is to add "www." or "." to the domain exception. Since the "Trusted addresses" dialog <span style="text-decoration: underline;">specifically</span> lists "example.com" as legitimate format I assume this to be a bug.</strong></p>
<p><strong>Curiously I also reported this to support for KIS where the same happens and just got told that this was "by design"?! To make things worse with KIS you cannot use the "." workaround (invalid format error), so for KES we at least have some way to exclude a whole domain.</strong></p>
<p><span></span></p>
<p><strong>Expected Result: Whole domain, including all sub-domains, should be excluded from decryption.</strong></p>
<p><strong></strong></p>
<p><strong>These are screenshot using KIS, but the same applies to KES:</strong></p>
<p><strong></strong></p>
<p><strong>askmrrobot.com</strong></p>
<p><strong><img src="https://i.imgur.com/BGr0upF.png" alt="" width="487" height="238" /></strong></p>
<p><strong></strong></p>
<p><strong>www.askmrrobot.com</strong></p>
<p><strong><img src="https://i.imgur.com/3cNdouU.png" alt="" width="483" height="214" /></strong></p><p>1)Diffenence between usin example.com and mask, like * or www. is "by design".2)Is the plagin installed in browser in this test?</p>
-
<p>1) Does "example.com" without mask do anything then?</p>
<p></p>
<p>2) The browser plugin was not installed.</p>
<p></p> -
<p>1) Does "example.com" without mask do anything then?</p>
<p></p>
<p>2) The browser plugin was not installed.</p>
<p></p><p>@timur-born1)it's put to exclusion site with address example.com. I create bug about incorrect promt.</p>
