What nonsense is this? Allstate Identity Protection by Bitdefender wants me to uninstall Root Certificates in Firefox and Thunderbird

Jeff S · Apr 6, 2024

I really feel like if the very first thing your "identity protection" software does upon install is ask the user to uninstall a root certificate in their browser and email client, you're doing identity protection services wrong. . .

Through my employer, I got "Allstate Identity Protection". As part of that, I can apparently install a version of Bitdefender antivirus/antimalware (and maybe firewall? Not clear yet) branded for AIP, but while it's installing, it prompts me to uninstall the AIP Device Security root certificate in Firefox and Thunderbird, and. . . I don't feel like I"m in good hands with Allstate. . .

Jeff S · Apr 7, 2024

UPDATE: So, I had reached out to BitDefender support to ask for an explanation of this. They are claiming, and maybe this is a reasonable explanation, but that some malware messages with certificates, somehow moving the bitdefender certificate into an 'untrusted certificates' list, making it so that bitdefender can't install because package signing fails in Windows (although that doesn't exactly explain why it was going to uninstall certificates from firefox and thunderbird, but I suppose we can extend that reasoning to, they want to remove and reinstall their certs everywhere to make sure they are correctly installed and trusted.

So, maybe that's a legit reason.

Lord Evermore · Apr 7, 2024

This may be it: https://www.bitdefender.com/consumer/support/answer/1921/

Search

Search

What nonsense is this? Allstate Identity Protection by Bitdefender wants me to uninstall Root Certificates in Firefox and Thunderbird

More options

Jeff S

Ars Tribunus Angusticlavius

More options

Jeff S

Ars Tribunus Angusticlavius

More options

Lord Evermore

Ars Scholae Palatinae

More options