Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Comodo Cloud AV - Autosandbox only - petya bypassed
Message
<blockquote data-quote="509322" data-source="post: 590516"><p>I had correspondence with Melih about CCAV early on.</p><p></p><p>CCAV with auto-sandboxing was created as Melih's answer to Sandboxie.</p><p></p><p>Because of system-wide auto-sandboxing, file reputation lookup (cloud AV) was implemented - so as not to auto-sandbox your entire system.</p><p></p><p>He could have chosen to make a setting "Do no auto-sandbox critical system files [C:\Windows]," but he never did like this option. It's obvious that he chose to port what he could from existing COMODO file lookup infrastructure.</p><p></p><p>The whole AV \cloud part of CCAV\CIS is to prevent auto-sandboxing of known safe files, the auto-blocking of known bad files, and auto-sandboxing of only unknown\untrusted files. That's the theory anyway. In practice, there are too many safe files that are unknown to COMODO - like AMD graphics drivers. That sort of stuff gets auto-sandboxed and is a real annoyance - even though the workaround is easy for those that know how to use the product.</p></blockquote><p></p>
[QUOTE="509322, post: 590516"] I had correspondence with Melih about CCAV early on. CCAV with auto-sandboxing was created as Melih's answer to Sandboxie. Because of system-wide auto-sandboxing, file reputation lookup (cloud AV) was implemented - so as not to auto-sandbox your entire system. He could have chosen to make a setting "Do no auto-sandbox critical system files [C:\Windows]," but he never did like this option. It's obvious that he chose to port what he could from existing COMODO file lookup infrastructure. The whole AV \cloud part of CCAV\CIS is to prevent auto-sandboxing of known safe files, the auto-blocking of known bad files, and auto-sandboxing of only unknown\untrusted files. That's the theory anyway. In practice, there are too many safe files that are unknown to COMODO - like AMD graphics drivers. That sort of stuff gets auto-sandboxed and is a real annoyance - even though the workaround is easy for those that know how to use the product. [/QUOTE]
Insert quotes…
Verification
Post reply
Top