Web Filter does not react on HTTPS Sites [M840]

Comodo Internet Security - CIS Resolved/Outdated Issues - CIS
1

2. The full product and its version e.g. COMOOD Firewall 7.0.308911.4080
COMODO Internet Security Premium Beta 7.0.308911.4080

3. Your Operating System (32 or 64 bit) and Service Pack revision. and if using a virtual machine, which one.
Windows 8.1 64bit (Real system i.e no VM used)

4. List all the configuration changes you did. Are you using Default configuration? If no, whats the difference?
No, more differences than I have time to write down, will attach my configuration file.

5. Did you install over a previous version without uninstalling first, or import a previous configuration file? (please try to avoid doing these things until we are told it is safe)
No and No, Clean install and started on a new configuration.

6. Other Security, Sandboxing or Utility Software Installed
OpenDNSCrypt | Zemana AntiLogger Free

7. Step by step description to reproduce the issue. Or if you cannot reproduce it, what you actually did before it happened, step by step.

Video demonstration: HTTPS website not blocked by CIS Web Filter - YouTube

[ol]- Create a new category called “Test HTTPS”

[li]Add these websites to the new category (Several for redundancy):
[list]
[li]https://i.imgur.com/cfgju15.png

  • *.imgur.com/cfgju15.png

  • *.png
    [/li]
    [/list]
    [/li]

  • Set up a new rule called “Test HTTPS”

[li]Add the “Test HTTPS” Category to the rule.

  • Add the user to the restrictions and set it to blocked.

[/li]

8. What actually happened when you carried out these steps

HTTPS website was allowed when there were specific rules to block it. (HTTP website was blocked)

9. What you expected to see or happen when you carried out these steps, and why (if not obvious)

I expected the HTTPS website to be blocked as the HTTP website.

[attachment deleted by admin]

2

I’m not entirely sure whether this the component is currently not designed to work with HTTPS, or whether this is a bug. Regardless I will forward this for investigation.

Thank you very much for your report in standard format, with all information supplied. The care you have taken is much appreciated by Comodo, and will increase the likelihood that this bug can be fixed.

Developers may or may not communicate with you in the forum or by PM/IM, depending on time availability and need. Because you have supplied complete information they may be able to replicate and fix the bug without doing so.

Many thanks again.

3

Not fixed/implemented in CIS 7.0.312140.4101 RC

4

Thank you for checking this. I’ve updated the tracker.

5

Not fixed in 7.0.313494.4115

6

Thanks for checking this. I have updated the tracker.

7

As this was not fixed during the Beta testing period I will move this bug report to the main Bug Reporting Board.

Please check and see if this is fixed with the newest version (7.0.313494.4115)? Please let us know whether it is fixed or you are still experiencing the problem.

Thank you.

PM sent.

8
9

Again, I’m sorry for moving too fast and not realizing you had already answered (and I had even responded :-[).

Thanks.

10

Just wondering, have the devs left any comments on this, for example if it’s not intended to work with https or if it’s a bug?

11

At the moment I’m not entirely sure. I can tell you that currently it is not meant to work with HTTPS, but as to whether it will be adjusted in some way in the future, I am not entirely sure. Also, I’m not certain whether this is definitively categorized as a bug or a wish. Sorry for being so vague. At the moment I just don’t have much definitive information about this report.

Sorry.

12

Not fixed in 7.0.315459.4132

13

Thanks for checking this. I’ve updated the tracker.

14

Not fixed in 7.0.317799.4142

15

Not fixed in 7.0.317799.4142

16

Thank you for checking this. I have updated the tracker.

17

I just realized that the behavior is inconsistent.

For example I made this video for another purpose How to block websites in CIS 7 - YouTube

In the video you can see that I add foot to a category and add it to blocked sites in CIS web filter.

http://footlocker.com was blocked.
https://startpage.com/do/search?query=foot&cat=web&pl=chrome&language=english was blocked. Please notice HTTPS.
Google was not blocked. Please notice HTTPS.

I did some testing then after stopping the recording.

Added comodo

All http and https sites of comodo.com I tested were blocked.
Searching for “comodo” in my URL (uses startpage.com) did block that website. (HTTPS)
Searching for “comodo” in google did not block the website, even though the url had “comodo” in it. (HTTPS)

Added torrentfreak

http://torrentfreak.com was blocked
https://torrentfreak.com was not blocked.

Conclusion: There is something that determines whether or not an HTTPS site will be blocked or not, but I don’t know what it is, it is always the same HTTPS sites that will be blocked and always the same HTTPS sites that won’t be blocked, for example HTTPS startpage will always be blocked if the url contains a blocked keyword, but HTTPS google will never be blocked even if it contains a blocked keyword.
Also, the warning window or whatever you want to call it, the thing that says that the website has been blocked by Comodo, it never shows for HTTPS websites.

18

Thank you. I have added this new information to the tracker.

19

The Website Filtering block only HTTP and HTTPS protocol, no others.

Internet Explorer sometime use SPDY protocol, the SPDY protocol different than HTTP/HTTPS, this cause the problem, if disable SPDY protocol in settings, this solve the problem.

In this issue, the Website Filtering not block FTP protocol, because of FTP protocol is different protocol than HTTP/HTTPS:
https://forums.comodo.com/format-verified-issue-reports-cis/web-addresses-with-ftp-are-allowed-regardless-of-webfilter-rule-m895-t102322.0.html

20

Hopefully they will improve this in the future so that it supports other protocols.

Thanks.