Comodo CIS Bug fix policy

[Pico]

The question still is why does Comodo CIS not enable IPv6 filtering when it detects native IPv6 network. Average users are not aware that IPv6 is disabled by default and go with this default setting. Any attempt by malware to connect out on IPv6 will be silently allowed.
Also if legit apps can use svchost on native IPv6 to connect out so can malware and again the connection will be silently allowed (no IPv6 FW alert) which is very unsecure (and bad).

 

[wat0114]

Re-installed free version of cfw and now, surprisingly, it alerts to IPv6 attempts. Unfortunately, it is either allow all or block all from initial connection alerts. No easy way to create specific IPv6 rule set from attempts to connect to remote IPv6 address. Gone back to Linux and UFW (Uncomplicated firewall) which is so much easier than Windows. An uninitiated user with no experience will inadvertently blow a wide open hole through the Comodo firewall to allow an application through it.

 

[bazang]

But then (if that's the case) - it doesn't belong among all the other "FREE" Active Firewall projects "WHERE ACTIONS SPEAK FOR THEMSELVES (Fixed Bugs, New Features Added, etc)". Just because it's free - does not mean it's worth treated with same respect (like all the other alternatives which are truly active projects) - just because it comes with a 2025 label (playing pretend) - so that alone should make it worth a new topic (or multiple in across the year in question).

Anybody that publishes free software can do whatever they want. All software is sold "As Is." The product owner is obligated to nothing more than what they are willing to do, regardless of what anybody thinks. That is just how it is.

Nobody here is insisting that everybody should use Comodo. That it is unbeatable. Nobody here is attempting to "mislead readers." Furthermore, nobody here is denying that CIS\CFW don't have bugs and usability issues. People can claim that @cruelsister 's videos are overt manipulation and thereby those vids are harming people by presenting Comodo in a false light.

As far as Comodo's ability to protect, which is an entirely different matter, the detractors only offer words. They do not supply any reliable evidence of protection flaws.

Although, none of this is the core issue here at MT in Comodo thread after Comodo thread. There are @cruelsister haters here. If they could, they would stop her from posting any videos. This is an irrefutable fact. The haters just don't have the courage to say it. So they troll and poison every single Comodo discussion.

I could care less about Comodo, what Melih does or does not do, or what anyone else thinks. What I do care about is @cruelsister 's right to post her videos. I do not always agree with things she says, but nevertheless I shall always defend her right to promote her own points of view - as well as her detractors' right not to agree with her. However, I also believe that people who believe in a product have the right to have discussions without the trolls and haters showing up to spread their toxicity and provoke others all because their objective is to create a flame war and have staff lock the thread.

 

[bazang]

He knows for sure that people working with the CEO in reality hate the guy.

@Decopi is quoting Glassdoor reviews.

Working for Melih is not easy. The typical person cannot effectively cope with it. So when they either quit or get fired they run to Glassdoor and basically do what @Decopi does here rage-ranting against Comodo. I guess employee feels compelled to warn the world that working for Comodo is so awful. They'll get back at Melih by posting as-bad-as-possible reviews on Glassdoor.

Something happened to really upset the Decopi to the point of cultivating a huge grudge towards the CEO and his associates and products?

The amount of resentment is rather alarming. The only thing greater is their hatred of @cruelsister .

 

[bazang]

I'm only saying that what's good for you might be bad, wrong and dangerous for 99,99% of the users.

OK. You've stated your point. Now leave everybody that likes Comodo alone. Stop trolling every Comodo discussion at MT.

You have the right to state what you believe to be true. But you are deliberately interfering with the Comodo enthusiasts here - which is one of the reasons the MT forum exists - which is for like-minded people to commune.

Stop with the whole "I am the strawman for the 99.99%. I am here to protect them against @cruelsister 's false and manipulating videos."

You've posted the same things over-and-over ad nauseum. The 99.99% that participate on this forum know full-well what your position is. You do not need to post anymore.

That means you can stop spamming Comodo discussions with your hatred. Beyond this point if you keep doing it, then it is for only one reason - because your intent is to harass every single CIS\CFW thread.

 

[rashmi]

If youo enable logging in the global rule you'll see the IPv6 blocks in the case below, blocking neighbourhood solicitation and a second image of some start=up blocks while CF was loading.

If your running full stealth you'll need to create allow rules for ICMPv6 - Packet too big, time exceeded, ICMPv6 type 135 type 0 & 136 type 0 for router advertisement and neighbour solicitation for IPv6 to work properly but that's from old notes.

View attachment 285448

Spoiler: IPv6 blocks

View attachment 285449
View attachment 285447

Anyway,, use what works for you. Time to go and see if I can identify the apparent 500 accumulated bugs.

I have read the IPv6 info on Comodo Forums but didn't try it.

With logs enabled for global rules, I tested with both stealth mode settings: blocking incoming connections and alerting incoming connections. Restarted the system for each test. I didn't create any rules in Comodo Firewall's global rules.

With Block Incoming Connections, logs showed neighbor solicitation and neighbor advertisement entries.
Windows Operating System | Action - Blocked | Direction - In | Neighbor Solicitation
Windows Operating System | Action - Blocked | Direction - In | Neighbor Advertisement
System | Action - Allowed | Direction - Out | Neighbor Solicitation
System | Action - Allowed | Direction - Out | Neighbor Advertisement

With Alert Incoming Connections, logs showed only neighbor solicitation entries.
Windows Operating System | Action - Blocked | Direction - In | Neighbor Solicitation

 

[wat0114]

There are no longer any decent application firewalls for Windows OS being actively developed. For Windows I would just stick with the built-in firewall augmented with Andy Ful's tools, or maybe WFC. For Linux, either UFW (Uncomplicated Firewall) or IP Tables if one is comfortable with it. For Linux there are no application firewalls available that I'm aware of.

 

[bazang]

There are no longer any decent application firewalls for Windows OS being actively developed.

Nobody does it because it just ain't profitable and, most importantly, it requires an extensive sacrifice of time. The ones that remain - BiniSoft WFC, SimpleWall, TinyWall, and there is one other - IIRC Windows 10 Firewall Control with limited features (Sphinx, looks as if its user forum is still active) - they are all one-person shops. The TinyWall developer refactored the code base, but by the time he did that he had already moved-on from TinyWall years earlier as his main gig is creating and selling niche hardware. The BiniSoft WFC is still active over at Wilders. I suppose it is the same for henrypp+ for SimpleWall. Not sure if he is still at it.

The era of freeware is over. The developers that created those projects and maintained them are all aging and moving on. That decades-old "free software for all" ideology is slowly dying off along with the project developers. The list of dead freeware security software is a long one. The only ones that remain reasonably maintained are those that are subsidized by paying subscribers.

 

[Pico]

There are no longer any decent application firewalls for Windows OS being actively developed. For Windows I would just stick with the built-in firewall augmented with Andy Ful's tools, or maybe WFC. For Linux, either UFW (Uncomplicated Firewall) or IP Tables if one is comfortable with it. For Linux there are no application firewalls available that I'm aware of.

How about Simplewall firewall or Fort firewall just to name a few?
These firewalls support FW rules for services and IPv6 filtering is implemented as well.

 

[Decopi]

For Windows I would just stick with the built-in firewall augmented with Andy Ful's tools

Excellent choice. Kudos!
Windows Firewall always has been, is and will be one of the best strong protections.
For average-Joe-users, the default settings are fine, because Windows is focused on "usability".
But for advanced-users, it needs to be customized, however by reading your posts, you have deep know-how about customizations, so it'll be easy for you. The good news is that the customization can be automated by scripts, and on the web is possible to find tons of these scripts (including scripts that lock and prevent Windows Firewall changes). More importantly, at Windows Firewall you can customize almost everything, including Windows Services, Svchost etc. Windows Firewall customized is perhaps one of the best options.
And Andy Ful' software is perfect for hardening Windows, Defender or Firewall.

or maybe WFC.

Another excellent choice!
It's a veteran solid software, well maintained, it has updates and upgrades, most of the reported bugs are fixed.
More importantly, WFC is another software that allows the customization of almost everything, including Windows Services, Svchost etc.
The Dev is very friendly, he is an open-minded guy, always ready to help, to answer questions, to give a hand if the user needs something etc.

There are no longer any decent application firewalls for Windows OS being actively developed.

Yes, currently there are decent application firewalls actively developed! Some of them are focused on privacy, another are focused on security.
But your choices (Windows Firewall and WFC) are great.
It is important to mention that "developing" is not really critical. An internal firewall doesn't need tons of new functions.
What any firewall really needs is:

1. The basic ability for rules customization (in/out, protocols, ports, source, destination etc) using its own kernel.

2. The full ability of control of any file (including Windows Services, Svchost etc). Here is where Comodo fails!

3. Maintenance (reported bugs fixed). Here is where Comodo fails!

 

[Antig]

OK. You've stated your point. Now leave everybody that likes Comodo alone. Stop trolling every Comodo discussion at MT.

You have the right to state what you believe to be true. But you are deliberately interfering with the Comodo enthusiasts here - which is one of the reasons the MT forum exists - which is for like-minded people to commune.

Stop with the whole "I am the strawman for the 99.99%. I am here to protect them against @cruelsister 's false and manipulating videos."

You've posted the same things over-and-over ad nauseum. The 99.99% that participate on this forum know full-well what your position is. You do not need to post anymore.

That means you can stop spamming Comodo discussions with your hatred. Beyond this point if you keep doing it, then it is for only one reason - because your intent is to harass every single CIS\CFW thread.

I fully agree with what you said bazang! Let's see now the next opera buffa from the prolix man and his (few) followers.

 

[Chuck57]

OK. You've stated your point. Now leave everybody that likes Comodo alone. Stop trolling every Comodo discussion at MT.

You have the right to state what you believe to be true. But you are deliberately interfering with the Comodo enthusiasts here - which is one of the reasons the MT forum exists - which is for like-minded people to commune.

Stop with the whole "I am the strawman for the 99.99%. I am here to protect them against @cruelsister 's false and manipulating videos."

You've posted the same things over-and-over ad nauseum. The 99.99% that participate on this forum know full-well what your position is. You do not need to post anymore.

That means you can stop spamming Comodo discussions with your hatred. Beyond this point if you keep doing it, then it is for only one reason - because your intent is to harass every single CIS\CFW thread.

He won't. Because of his statement that "what's right for you might be wrong for 99.9% of users." That's saying we shouldn't post anything favorable because our posts may damage other computer users. We should not voice our experiences for the good of the rest. Sounds almost communist.

He doesn't like Cruelsister, a female. Females should not be posting videos, or have such knowledge of computer software. They belong at home in the kitchen.

 

[simmerskool]

Nobody does it because it just ain't profitable and, most importantly, it requires an extensive sacrifice of time. The ones that remain - BiniSoft WFC, SimpleWall, TinyWall, and there is one other - IIRC Windows 10 Firewall Control with limited features (Sphinx, looks as if its user forum is still active) - they are all one-person shops. The TinyWall developer refactored the code base, but by the time he did that he had already moved-on from TinyWall years earlier as his main gig is creating and selling niche hardware. The BiniSoft WFC is still active over at Wilders. I suppose it is the same for henrypp+ for SimpleWall. Not sure if he is still at it.

The era of freeware is over. The developers that created those projects and maintained them are all aging and moving on. That decades-old "free software for all" ideology is slowly dying off along with the project developers. The list of dead freeware security software is a long one. The only ones that remain reasonably maintained are those that are subsidized by paying subscribers.

There is some relationship between Malwarebytes and WFC (& Binisoft), correct? I have the impression that Malwarebytes is continuing the development of WFC, but I'm clueless & could be wrong about that. I started using WFC again about a month ago, 6.11.0.0, and seems to work well. It updates every so often. A nice addition for the OS Windows Firewall.

 

[wat0114]

The era of freeware is over.

I have no problem paying for an actively developed application Windows firewall. I bought a license for Sphinx firewall some years ago, and I was very impressed with it, but they seem to have stopped development on it.

@Pico

I overlooked Simplewall and Fort Firewall. I will maybe check these out. Either that, or just stay with Linux and keep it simple. Thanks!

@Decopi

Yes, Windows firewall has some strengths, but the interface to create rules is cumbersome and time consuming, and the lack of support for wildcards in path rules is problematic. This is also something WFC can't address.

My Linux UFW ruleset:



Ports 465 and 995 for email client, some remote specific IP's to insecure port 80 for Linux repositories, Cloudflare DNS to remote port 53, time updates to tcp 123, and the rest quite obvious, especially remote TCP 443. I also denied in to 0.0.0.0 because of some recent malicious attack on this IP from the browser. These rules, of course, apply to all applications requesting outbound comms.

Finally, and because this thread is about Comodo, the firewall can be elevated to greatness, best of the best, if the developers can iron out some long reported bugs and make the firewall gui much easier to configure rules as per end user requirements. The documentation is, imho, excellent as well. An example of this:

General Settings | Comodo Firewall, Computer Security|Comodo Internet Security v5.9 /5.10

Customize firewall security by using Comodo Firewall Security lever slider to change preset security levels. Read more here...

help.comodo.com

Obviously a lot of time and effort went into this documentation, it is some of the best I've seen for a Windows security application.

 

[Decopi]

but the interface to create rules is cumbersome and time consuming

Windows Firewall is focused on the average-Joe-user, who needs “usability” from the OS. Therefore, Windows is not interested in having average users messing with firewall rules. That is why its GUI is cumbersome and time-consuming. That being said, it is important to recognize that:

1. From Windows’ point of view, they are absolutely right, because hardening firewall rules will reduce or kill “usability.” Also, the default Windows Firewall settings are more than enough for average users.

2. Even for advanced users, firewall rules are often cumbersome and time-consuming, regardless of whether the GUI is user-friendly or not. It was easier in the past, but today, in our current hyper-connected society, with many synchronized devices etc, even the best and most user-friendly firewall, if it is a full-fledged software, then it is cumbersome and time-consuming to customize.

3. Considering that Windows Firewall is the most compatible firewall for Windows, advanced users looking to hardening security and privacy may find it worthwhile to invest time in customizing settings. As I mentioned, for Windows Firewall there are tons of scripts on the web, which can make 90% of Windows Firewall customization easier and faster.

Maybe this isn't your case and you have other preferences. But your comments are an opportunity to guide other users who are reading us (also alerting them about the dangerous risks of abandonwares like Comodo).

This is also something WFC can't address.

Yeap, you are right about wildcards.
But at least and in compensation WFC has one of the best GUIs on the market.

And both Windows Firewall and WFC, when compared to Comodo, are by far way much better, firstly because both are well maintained, with updates/upgrades, reported bugs fixed etc, and secondly, and most importantly, both allow full customization of any file (Comodo does not allow this).

Back to WFC, I suggest you ask them for your wildcard issue. Compared to Comodo, you can ask them to fix bugs, and it is 100% guaranteed that your request will be totally ignored. But at WFC, they will at least try to implement your wildcard request (or another Dev will listen to your request and try to implement it).

Finally, and because this thread is about Comodo, the firewall can be elevated to greatness, best of the best, if the developers can iron out some long reported bugs and make the firewall gui much easier to configure rules as per end user requirements.

I totally agree.
Unfortunately, facts are facts, reality is reality... and Comodo has been deprecated since 2017 (abandonware), is full of dangerous bugs (around ±500), the firewall is a placebo due to old design flaws, the antivirus is garbage, Containment has issues and is unusable for 99.99% of users.

There is no problem in expressing our wishes and dreams about Comodo. But given the current dangerous situation of Comodo, it is our duty to be moral and responsible by alerting users about the risks of Comodo.

 

[bazang]

I have no problem paying for an actively developed application Windows firewall. I bought a license for Sphinx firewall some years ago, and I was very impressed with it, but they seem to have stopped development on it.

Sphinx is a one-person shop. The product only receives maintenance updates if there is a serious issue. Otherwise interest in it began to wane about the time Windows 8 was released. There is active, highly intermittent support on the product forum.

There is some relationship between Malwarebytes and WFC (& Binisoft), correct?

Malwarebytes purchased Windows Firewall Control from the BiniSoft developer years ago.

I have the impression that Malwarebytes is continuing the development of WFC.

Malwarebytes pays the BiniSoft developer to continue updates on the product, however it has been a large Commerical success.

 

[bazang]

Malwarebytes pays the BiniSoft developer to continue updates on the product, however it has been a large Commerical success.

The above should say:

Malwarebytes pays the BiniSoft developer to continue updates on the product, however it has been a Commerical failure.

 

[Pico]

Another Comodo issue...
Comodo CIS 2025 "trail period" has expired. It can not longer be used nor being (re)installed due to a revoked certificate.
Expected fix in CIS 2026.

 

[ErzCrz]

Another Comodo issue...
Comodo CIS 2025 "trail period" has expired. It can not longer be used nor being (re)installed due to a revoked certificate.
Expected fix in CIS 2026.

You need to download the Premium version. Direct Link: Comodo Premium Installer. Having said that, there's currently a expired certificate issue today that they're resolving.

 

[Pico]

Is it only CIS 2025 Pro from link on Comodo site being affected by the issue?