Hi David,
Since there is email shield component involved in AVG Antivirus free, it would have asked you to install the security certificate.
To know about the issue that would happen if it wasn't installed, please refer this article.
Feel free to contact us if you need further clarification.
David, thank you for confirming that you have the latest version installed.
Please note that the program update is gradually distributed region wise and it could be possible that it is delayed.
Regarding the server certificate errors, the AVG Email Shield uses an advanced scanning method for incoming and outgoing emails over SSL/TLS secure connections.
If you would like, you can disable scanning emails sent over SSL/TLS secure connections, which is not recommended.
I just now installed AVG AntiVirus Free 20.6.3135. NOTE WELL: The reason I did not install it sooner is that the older AVG AntiVirus Free failed to give me a warning that a new version was available despite the fact that my settings said I should be alerted.
Yes, I already imported your certificates. However, I noticed that your three root certificates do not appear in Mozilla's list of vetted roots. If Avast/AVG is not a Mozilla-approved certification authority, your insistance that I have your root certificates and server certificates represents an unacceptable hostile hack, the sort of thing your applications are supposed to prevent.
Windows 7 Ultimate SP1 x64
AVG Antivirus Free 20.4.5312.0
I just updated AVG Antivirus. When I then launched my E-mail client (Thunderbird), I got an Add Security Exception window. I could not continue until I selected the "Confirm Security Exception" button, which caused a SSL/TLS server certificate for my domain to be added to my Thunderbird's database. The domain certificate expires in 12 weeks. The server certificate for my domain was issued by "AVG Web/Mail Shield".
I believe that issuing an unrequested certificate is a violation of the standards that apply to certification authorities.
Why did this happen? In 12 weeks, will it happen again?
I just now installed AVG AntiVirus Free 20.6.3135. NOTE WELL: The reason I did not install it sooner is that the older AVG AntiVirus Free failed to give me a warning that a new version was available despite the fact that my settings said I should be alerted.
Yes, I already imported your certificates. However, I noticed that your three root certificates do not appear in Mozilla's list of vetted roots. If Avast/AVG is not a Mozilla-approved certification authority, your insistance that I have your root certificates and server certificates represents an unacceptable hostile hack, the sort of thing your applications are supposed to prevent.
David, if you follow the steps as mentioned in the article provided earlier, you shouldn't experience any issues with the email certificates.
We are actually exporting the AVG email shield certificate and importing it to your email client to avoid security certificate errors.
We aren't sure where you see the expiry for the certificate.
Hence, could you share a screenshot of it and mention whether you see it from Thunderbird or AVG?
You can post the screenshot by clicking on 'Image' (mountain symbol) from 'Answer' field.
Today, I was again nagged to allow a new certificate for my E-mail account in Thunderbird. Apparently, the old certificate expired.
I already connect securely to the POP3 and SMTP servers for both of my E-mail accounts. This is very annoying. Is there not some way to stop the use of your certificate in Thunderbird?
As noted before, I refuse to update Thunderbird beyond my current version 52.9.1.
Why is it necessary to have certificates to scan incoming E-mail? It was not necessary with earlier versions of AVG AntiVirus.
No, I am not using the latest Thunderbird. I am using Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 and will continue to use it as long as possible. Later versions broke several of the extensions upon which I depend. Since there are no substitute extensions for the later versions, I am stuck with 52.9.1.
I have bookmared this issue and will indeed report if the certificates fail to update. I cite "certificates" because there is apparently a second certificate targeted to my secondary E-mail account.
What happens in 12 weeks when the rossde.com certificate expires? What happens on 29 October 2020 when the certificate you added for mail.twc.com expires? Do I have to Confirm Security Exception or import new certificates?
David, could you confirm the current version of AVG free installed on your PC?
Thank u for the information david.
Hope you are having the latest version of thunderbird installed.
We request you to keep monitoring the status till the expiry date.
The certificate should get updated automatically. If not, do contact us immediately.
Windows 7 Ultimate SP1 x64
AVG AntiVirus Free 20.5.3130 (build 20.5.5410.586)
Go to AVG >> Menu >> Settings >> General >> Update and check if the application is up to date updated.
And can you confirm that you followed these steps mentioned in this article :
https://support.avg.com/SupportArticleView?urlname=AVG-Troubleshoot-invalid-email-certificate
We understand the situation, David.
We request you to keep monitoring the situation till the expiry date of the certificate and reach out to us if you receive the security certificate prompt after the expiration.
Thank you for understanding.
Today, I was again nagged to allow a new certificate for my E-mail account in Thunderbird. Apparently, the old certificate expired.
I already connect securely to the POP3 and SMTP servers for both of my E-mail accounts. This is very annoying. Is there not some way to stop the use of your certificate in Thunderbird?
As noted before, I refuse to update Thunderbird beyond my current version 52.9.1.
Here is an image of what Thunderbird displays as a summary of the certificate. Note the third section, "Period of Validity".