This content has been marked as final. Show 2 replies
The connection is secure, that's all we know. I'll ask internally regarding the digitally signed question.
Short Answer: Yes
Your initial install and download come from a direct SSL/TLS connection to McAfee. These connections are not something that can be HiJacked or impersonated (without modification to your own machine's certs).
When you install or update, the updater will connect using to an SSL/TLS connection to get data about where the update is located. The updater/installer will then download via normal http a CAB file for the component needed. This CAB file is digitally signed by McAfee (Verisign Class 3 Code Signing CA) to make verify its integrity.
Many McAfee files that can be signed (especially drivers and executables) are also digitally signed. Future versions of the engine will also be digitally signed (as it is not at this time). The engine will do it's own integrity check of the DAT files to make sure they have not been compromised.
If you suspect a DNS hijack, I suggest you manually configure your DNS to use your own DNS server or an OpenDNS server. You can Google OpenDNS for more information about it. However, an advanced hacker could route any DNS queries to anywhere, so for the highest level of security, I recommend you invest in some sort of VPN using a known trusted protocol (PPTP/MPPE, L2TP, IPSEC, SSL, SSH).