Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Basic sandbox demo(for beginners)
Message
<blockquote data-quote="AtlBo" data-source="post: 651721" data-attributes="member: 32547"><p>[USER=60553]@Prayag[/USER] I really like your setup for what you say. Wish I had more experience with the Firewall configuration to understand better the scope of protections using the config. I have been on Proactive only for so long I can't even determine how the settings are different. I have only run Firewall config for minutes at a time to import a config or after installing Comodo.</p><p></p><p>Have you been able to test yet with malware or with "Unrecognized" files? I have been testing various ways of dealing with "Unrecognized" files. The primary focus of this for me is to determine the best way to think and act so as to avoid changing "Unrecognized" files into "Trusted" ones.</p><p></p><p>If I might suggest, maybe you could perform a battery of malware tests if you are a tester. I think the best test would be to turn off the sandbox and test the HIPS and firewall to see if you are getting what you like alerts/rules-wise. You may notice the finer points of how you choose to respond to an alert affects how the app/file is handled. I recommend checking to see how various choices affect the file/app trust status in the files list.</p><p></p><p>You would probably only need to run 20-30 "Unrecognized" samples to get a good feel for how to advise users about responding when there is an alert. Hopefully, you could get a look at a command-line alert or maybe some others. Ultimately, 50 samples might be ideal and would probably take a couple of hours I guess.</p><p></p><p>I have almost book I could explain about the protections and settings change sequences of Comodo, but there are unknowns in my determinations. Comodo help is good but not so great about how choices affect file/app status and also about how file/app status affects general initial/default protections (of each config). What I can say about Comodo has helped me be able to test on a normal system, which I needed for now to be able to do. Otherwise, in a VM you should be able to test without any worry of what happens to the system or Comodo, etc. Definitely if you ever test malware "Unrecongized" do so in a VM.</p></blockquote><p></p>
[QUOTE="AtlBo, post: 651721, member: 32547"] [USER=60553]@Prayag[/USER] I really like your setup for what you say. Wish I had more experience with the Firewall configuration to understand better the scope of protections using the config. I have been on Proactive only for so long I can't even determine how the settings are different. I have only run Firewall config for minutes at a time to import a config or after installing Comodo. Have you been able to test yet with malware or with "Unrecognized" files? I have been testing various ways of dealing with "Unrecognized" files. The primary focus of this for me is to determine the best way to think and act so as to avoid changing "Unrecognized" files into "Trusted" ones. If I might suggest, maybe you could perform a battery of malware tests if you are a tester. I think the best test would be to turn off the sandbox and test the HIPS and firewall to see if you are getting what you like alerts/rules-wise. You may notice the finer points of how you choose to respond to an alert affects how the app/file is handled. I recommend checking to see how various choices affect the file/app trust status in the files list. You would probably only need to run 20-30 "Unrecognized" samples to get a good feel for how to advise users about responding when there is an alert. Hopefully, you could get a look at a command-line alert or maybe some others. Ultimately, 50 samples might be ideal and would probably take a couple of hours I guess. I have almost book I could explain about the protections and settings change sequences of Comodo, but there are unknowns in my determinations. Comodo help is good but not so great about how choices affect file/app status and also about how file/app status affects general initial/default protections (of each config). What I can say about Comodo has helped me be able to test on a normal system, which I needed for now to be able to do. Otherwise, in a VM you should be able to test without any worry of what happens to the system or Comodo, etc. Definitely if you ever test malware "Unrecongized" do so in a VM. [/QUOTE]
Insert quotes…
Verification
Post reply
Top