Gently Blocking HTTPS sites

Scary for Users. Workload for Help Desks.

Users on networks with DNS-based filters blocked HTTPS sites ends up being shown a scary HTTPS certificate broken warning by the browser. This happens because the block page (hosted by the Cloud DNS provider such as Rawstream) does not have a valid SSL certificate for the blocked domain. The browser assumes that there is an evil hacker at work trying to intercept accept access to the domain.

This is alarming for users and generates needless tech support calls to helpdesk.

NXDomain---Your-Connection-is-not-private-certificate-error

 

NXDomain it instead.

We cannot get around the problem of not having SSL certificates, but we can do something about the scary browser warning page. From today, when a user attempts to access a blocked HTTPS page they will get an NXDOMAIN error instead of being directed to our block page.

NXDOMAIN means domain does not exist – an error which the browsers can understand and does not result in showing scary alerts.

This is a small change, but one we hope helps IT admins and improves the experience of end-users.

Related posts

How To: Custom Block Pages

Block pages are shown when an attempt is made to reach a blocked site. You can use custom block pages to show a message to users, show the organization logo and direct users to contact help desk. Rawstream block pages are completely customizable: they can contain HTML, CSS, link to external...

Blocking Peer-to-Peer downloads with Cloud DNS filtering

P2p downloads soak up bandwidth and expose WiFi providers to legal risk. To deal with this risk most providers make the sensible decision to install some sort of web filtering product, usually DNS based filtering because its quick and simple to install. Most web filtering software on the...

Rawstream launches free cloud anti-virus software, SkyAV

Rawstream launches free cloud anti-virus software, SkyAV

MAKING THE CLOUD SAFER FOR EMERGING MARKET USERS London, December 15, 2016 - Internet security company Rawstream is launching a cloud anti-virus software that meets an unmet need: protecting the cloud-based files on Dropbox for emerging market users who only use mobile devices. Best of all...