Advice Request Combining Comodo Firewall with the OSArmor

Please provide comments and solutions that are helpful to the author of this topic.

imuade

imuade

Level 12
Verified
Top Poster
Well-known
Jul 29, 2018
566
Nagisa-kun said:
1) CF + OSArmor
2) CF + HIPS + OSArmor
3) CF + HIPS

OSArmor is such a lightweight program and I would like to use it if it will give me extra security. Which option is better?
Click to expand...
CF at CS settings (firewall, sandbox, cloud lookup) will cover all your needs.
HIPS will just give you tons of alerts.
OSArmor will be useful only if you allow something bad to run
 
  • Like
Reactions: Weebarra, vtqhtr413, oldschool and 6 others
RoboMan

RoboMan

Level 35
Verified
Top Poster
Content Creator
Well-known
Jun 24, 2016
2,400
If you use CS' CFW then you need nothing else. Every unrecognised file will be sandboxed, you don't even need signatures nor HIPS. As long as you don't start disabling components to run suspicious blocked programs you're done.
 
  • Like
Reactions: Weebarra, vtqhtr413, oldschool and 3 others
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
CFW is weak on vulnerable process protection, especially at CruelSister settings. It will block file-based infections, but it is weak against the fileless variety. This is where OSA can help you. It is designed specifically for that.
 
  • Like
Reactions: Weebarra, paulderdash, vtqhtr413 and 4 others
Nagisa-kun

Nagisa-kun

New Member
Thread author
Jan 28, 2019
2
@shmu26 @LDogg @RoboMan @imuade

Thanks...

What if I would like to combine them while doing some dangerous thing on my computer? Would they conflict with each other? I whitelisted the osarmor service on the comodo hips but I don't know could if OSArmor can prevent comodo from doing its things. My biggest fear is something like that.

Also I had enabled some options in OSArmor advanced settings, for example, blocking cmd.exe. I guess comodo doesn't need to the console while doing its security funtions. Am I right?
 
  • Like
Reactions: Weebarra and shmu26
bribon77

bribon77

Level 35
Verified
Top Poster
Well-known
Jul 6, 2017
2,392
I think the configuration of Comodo Firewall with the Cs configuration is sufficient.
I used a little OSArmor with CF and had Blue Screens. It's true that it was at the beginning of OSArmor . but since then I haven't used it anymore.
 
  • Like
Reactions: Weebarra, harlan4096, shmu26 and 2 others
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Nagisa-kun said:
@shmu26 @LDogg @RoboMan @imuade

Thanks...

What if I would like to combine them while doing some dangerous thing on my computer? Would they conflict with each other? I whitelisted the osarmor service on the comodo hips but I don't know could if OSArmor can prevent comodo from doing its things. My biggest fear is something like that.

Also I had enabled some options in OSArmor advanced settings, for example, blocking cmd.exe. I guess comodo doesn't need to the console while doing its security funtions. Am I right?
Click to expand...
1 If you want to improve on the default Comodo protection, go into advanced settings, miscellaneous, embedded code detection. Over there, you can enable more processes to be protected. But even if you enable all of them, it is a short list, it does not cover everything, and furthermore, it has not been tested thoroughly. It works well for Powershell, but I have questions about some of the other ones.
If you find that this conflicts with your software in some way, disable embedded code detection only for the process that gives you trouble. (You can still get protection for that process if you enable Comodo HIPS and make some custom settings, but that is another subject).

2 I don't know how well OSA works with Comodo. You could try it, and deliberately cause blocks of various sorts, and see if it works right.

3 If you want to add to Comodo protection by using another solution, I would recommend @Andy Ful's Hard_Configurator. Using it, you can enable protection for a long and inclusive list of vulnerable processes (he calls them "sponsors"), and it will not conflict with Comodo. But even if you don't enable any of them, the default protections of "Recommended SRP" are already very strong. You can use the special template that Andy prepared for Avast hardened/aggressive mode, because it is appropriate also for Comodo @CS settings. That is what I use on my wife's laptop.

4 Please note that enabling full protection for all vulnerable processes, or sponsors, or lol bins, or whatever you want to call them -- this is not possible on all systems. It depends a lot on your hardware and software. If you have a conflict, but still want protection for that process, then you need a security solution that allows you more fine-grained control, such as NVT ERP, or ReHIPS, or Comodo HIPS (it you know how to configure it properly).
 
Last edited:
  • Like
Reactions: bribon77, Andy Ful, Weebarra and 3 others

Similar threads

Shadowra
    • Like
    • +Reputation
    • Thanks
App Review NoVirusThanks OSArmor 2024
Replies
8
Views
1,387
Video Reviews - Security and Privacy
NoVirusThanks
NoVirusThanks
ErzCrz
    • Like
Question Comodo Firewall rules for Edge?
Replies
2
Views
835
Comodo
ErzCrz
ErzCrz
ErzCrz
    • Like
New Update Comodo Internet Security 2024 v12.3.2.8124 BETA (Feb 2024)
Replies
16
Views
1,747
Comodo
Nikola Milanovic
Nikola Milanovic

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top