- Feb 25, 2017
- 2,500
Hardened Windows Firewall is just fine, but I actually agree with him that Comodo Firewall might be the best third-party firewall out there that isn't only restricted to it's firewall component but can also add some extra protection to your existing security solution. It can get annoying with those popups, but user interaction is what Comodo FW is made for.So this is only for laptops? Because at home we have our router's firewall.
Comodo Firewall is extremely annoying... I say either use Windows Firewall or buy a cheap AV that includes firewall, like AVG Internet Security.
True LOL, unless you know what a socket is and WIM and all the rest of the Windows components Comodo protects, the HIPs alerts will just be nonsense and useless...and yes annoying. That said, Cloud lookup enabled with the Comodo Trusted Vendor list in place is not a bad experience, but do have to know how to deal with unexpected blocks for many things like drivers and obscure software, etc. Also, need to know when to bypass the alerts and when to "power through" them.Recommending Comodo Firewall to average users is just wrong, if you do no include a warning. I recommend them Glasswire.
There is always at least one person that doesn't agree with his testing techniques when there is a discussion about his videos. Somehow I never see those opinions in his comments where it's more likely for him to read it. So while I fully agree with what you are saying I don't understand why people (not just you) don't try to get to him instead of talking on Wilders or MalwareTips behind his back. I am also not a big fan of his evolution but still think that hes not trying to fool anyone.From time to time in the past I have done videos myself, and in doing them I made sure not to be either sloppy and/or disruptive in reviewing a product. Sadly the author of this video has other standards.
Specifically please note that the strength of CF is Containment. And what is the setting used in the video? You may note that it is Disabled. Just as bad can be seen in the original ransomware sample used- Wasted Locker. This guy is not exactly fresh- so why was there not an AV alert for a block? The answer here is rather simple (and can be reproduced by any out there who test) and is that the Cloud lookup was also disabled (not shown on the video setup, but trust me on this). Also all the samples used in this- Shade, Wasted Locker, and Kitty would be also stopped by the AV module before the HIPS would have even reacted and actually really couldn't even get into containment.
Perhaps the author should spend less time on product commercials and more time on actually understanding what is being done.
From time to time that is true, but just because he doesn't have auto containment enabled it doesn't mean that hes trying to distort the result. He mentiones at the start of the video that Comodo comes with auto containment and doesn't pretend that it isn't there. Running ransomware in a sandbox just isn't as interesting as a HIPS module that gives alerts after every file action. In the end hes still mainly trying to address basic users that are not that deep into the cyber security topic, at least thats how it looks to me. So he has to make the video interesting, and it's not interesting to see a ransomware file crashing in a sandbox...If he isn't trying to fool anyone, he's completely ignorant of the software he tests.
He never bothers to learn how apps work before he starts flipping switches.Containment is enabled, at least in all the recent versions of CF I've used. A newbie, or basic, user just installs and doesn't mess with settings. Thus, PC Security is not running it in basic settings. He's altering them, weakening them. Thus, in my opinion he's presenting false results regarding the firewall.
No its not, you will not see alerts if you set it to be so. ( I mean there is a setting for that- to see less or no alerts at all).So this is only for laptops? Because at home we have our router's firewall.
Comodo Firewall is extremely annoying... I say either use Windows Firewall or buy a cheap AV that includes firewall, like AVG Internet Security.
Containment is enabled, at least in all the recent versions of CF I've used. A newbie, or basic, user just installs and doesn't mess with settings. Thus, PC Security is not running it in basic settings. He's altering them, weakening them. Thus, in my opinion he's presenting false results regarding the firewall.
Exactly. It's not like to have to deal with the alerts if you don't want to. And you can configure "no alert mode" to default deny, default execute, or let Comodo decide. Another option is to disable the HIPS and let the Auto-contain and VirusScope do the heavy lifting. I really wonder if people who complain about the alerts really understood how to use the program. Its very configurable. Easily the best stand alone firewall out there.No its not, you will not see alerts if you set it to be so. ( I mean there is a setting for that- to see less or no alerts at all).