ADS/Source tracking is no longer there in V10 so "Alternate Data Streams\Zone.Identifier" doesn't apply for V10, right?
If I am correct, now they use some kinda "Global File Database".
CIS 10 stable released
- Thread starter Janl1992l
- Start date
- Status
If I am correct, now they use some kinda "Global File Database".
I was not ever talking about CIS specifically. My post was about ADS\zone.identifier generally.
Last edited by a moderator:
- Jul 3, 2015
- 8,153
anybody know what this global file database is all about, and when does it come into play?
- Jul 3, 2015
- 8,153
no. that would give you two default/deny apps, which is redundant.
- Aug 4, 2015
- 152
Yes because comodo is in first place a two way firewall and this is a must to have, then you can consider the autosandbox in place of SAP (in my opinion comodo autosandbox is stronger than sap)
- Jul 3, 2015
- 8,153
yes, if @blueblackwow65 wants to replace with SAP with a stronger app, then I agree with you, COMODO provides a great firewall.
However, SAP + Avast is very good protection, and it is a lot easier to use than COMODO.
For instance, I just tried to run Revo uninstaller, and it offered an update. Great. But COMODO sandboxed the installer. I happen to know what to do, but for a new user of COMODO, some things can be frustrating.
EDIT: all modern versions of Windows have two-way firewall by default, so you don't need a third-party app for this.
- Aug 4, 2015
- 152
Yes but two way firewall of windows is difficult to configure, comodo (firewall only) is easy to use. And yes, autosandbox need attention but is not really hard to use.
- Aug 4, 2015
- 152
Then you can use comodo firewall (without autosanbox and hips) with avast and SAP
- Jul 3, 2015
- 8,153
It's not really necessary to install COMODO just to get better control over firewall. That can be achieved with binisoft windows firewall control, or other ways, if the user needs that kind of control
- Aug 4, 2015
- 152
Binisoft firewall control, Tiny Wall, Comodo are good, but for me two way firewall is a must, and Comodo is free, light and easy to use.
- Jul 3, 2015
- 8,153
I am trying CFW 10 for now on Win 10 64 Pro
Software enabled on Task Manager - "Startup" - CFW, Adguard & Rollback Rx Pro
Windows FW disabled
Windows Defender disabled through group policy
UAC set to "never notify" in Control Panel
Smart Screen set to "dont do anything" in Control Panel
CFW (config activated "internet security")
Internet Security Essentials uninstalled
User interface - Show notification messages & Password protection checked, rest unchecked
Updates - Automatically download program updates unchecked, rest defaults
Firewall settings - Enable trustconnect alerts unchecked & "Do not show popup alerts" option checked & set to "block requests", rest defaults
Sandbox settings - "Do not virtualize access to the specified files/folders" & "Enable automatic startup for services installed in the sandbox" both unchecked, "Do not show privilege elevation alerts" checked & set to "Run isolated", "Protect virtual desktop with a password" checked, rest defaults
AutoSandbox - 6th entry/option - File Origin - "Intranet", "Internet" & "Removable Media" Removed, rest defaults
File rating settings - "Do not show popup alerts" option checked, rest defaults
Website filtering - Website Filtering Disabled
Viruscope - "Do not show popup alerts" option checked, rest defaults
Task Manager shows Comodo startup impact "Low"
4 running processes - app 20MB
Rating scan detected only 2 files related to Rollback Rx Pro "Unrecognized" - I added those to "Trusted".
After system restart, "Unblock Applications" had 1 file i.e ExpressVPN service - I added it to "Trusted", nothing was in "Unrecognized Files".
Software enabled on Task Manager - "Startup" - CFW, Adguard & Rollback Rx Pro
Windows FW disabled
Windows Defender disabled through group policy
UAC set to "never notify" in Control Panel
Smart Screen set to "dont do anything" in Control Panel
CFW (config activated "internet security")
Internet Security Essentials uninstalled
User interface - Show notification messages & Password protection checked, rest unchecked
Updates - Automatically download program updates unchecked, rest defaults
Firewall settings - Enable trustconnect alerts unchecked & "Do not show popup alerts" option checked & set to "block requests", rest defaults
Sandbox settings - "Do not virtualize access to the specified files/folders" & "Enable automatic startup for services installed in the sandbox" both unchecked, "Do not show privilege elevation alerts" checked & set to "Run isolated", "Protect virtual desktop with a password" checked, rest defaults
AutoSandbox - 6th entry/option - File Origin - "Intranet", "Internet" & "Removable Media" Removed, rest defaults
File rating settings - "Do not show popup alerts" option checked, rest defaults
Website filtering - Website Filtering Disabled
Viruscope - "Do not show popup alerts" option checked, rest defaults
Task Manager shows Comodo startup impact "Low"
4 running processes - app 20MB
Rating scan detected only 2 files related to Rollback Rx Pro "Unrecognized" - I added those to "Trusted".
After system restart, "Unblock Applications" had 1 file i.e ExpressVPN service - I added it to "Trusted", nothing was in "Unrecognized Files".
- Jul 3, 2015
- 8,153
what is autosandbox still doing, after you removed that 6th entry?
I didn't removed 6th entry, edited the entry i.e file origin - internet, intranet & removable media removed.
Its working as intended i.e unknown programs on the system before Comodo install are autosandboxed.
- Jul 3, 2015
- 8,153
so you turned it into the functionality of proactive mode? Just trying to understand what you did and why you did it.
I use CFW only with Internet Security config.
I did that to test the usability, otherwise I have to download new programs as already there on the system before CFW install is treated as trusted. And I did that also to check it works as intended. And it works as intended But from some programs I didn't get autosandbox alerts though they were correctly autosandboxed like I tried SecureMyBit, SubtitleEdit & correctly were autosandboxed & alerts were there But I tried ExpressVPN, openvpn.exe & xvpnd.exe were autosandboxed & no alerts were there.
And I noticed that if same files/programs appear on both i.e "Unrecognized Files" & "Unblock Applications", its better to use "Unblock Applications" to unblock/trust them coz unblocking/trusting files/programs through "Unblock Apps" removes the same entry from "Unrecognized Files" list too And thats good.
But if you use "Unrecognized Files" list to unblock/trust files/programs then same entry are not removed from "Unblock Apps" And there is no way to manually remove them. Offcoz you can unblock here too to remove them But will be double work & dont know if duplicate entries will be there or not in files list, etc (that time didn't come to mind to check).
I reverted now to clean snapshot.
Usability seems improved And "Unblock Applications" is good addition to quickly & easily unblock apps.
I may try it on my family system, not decided yet.
They are going to release hotfix with reported probs & guess offline installers this week.
As per a user on Comodo forums, if you disable Comodo alerts under Windows notification settings, you should get Comodo type alerts instead of Windows alerts on Win 10 (You get Windows alerts for some stuffs on Win 10 & not Comodo type alerts) BUT its not working i.e if you disable Comodo alerts under Windows notification settings then you dont get any alerts (You may get some alerts but autosandbox, etc alerts are not there).
And it seems a bug with CFW only (dont know applies to CIS, etc too or not?) i.e Cloud/AV alerts are not shown on detection/quarantine.
I have mentioned both on Comodo forums.
And I dont understand why they are not adding "ask for untrusted" option in CIS/CFW, etc?
And why they think that option set to "block" should not generate alerts?
i.e if you set sandbox option to "block" unknown or FW option to "block request" for unknown, there are no alerts on programs/connections block.
It would be good to get notification for blocked programs/connections, it will let you know Comodo blocked stuffs And nothing wrong with the stuffs.
And I had noticed "Windows Operating System" blocked by Firewall under "Unblock Applications".
Dont know why/how/what it was?
And why they think that option set to "block" should not generate alerts?
i.e if you set sandbox option to "block" unknown or FW option to "block request" for unknown, there are no alerts on programs/connections block.
It would be good to get notification for blocked programs/connections, it will let you know Comodo blocked stuffs And nothing wrong with the stuffs.
And I had noticed "Windows Operating System" blocked by Firewall under "Unblock Applications".
Dont know why/how/what it was?
- Status
