App Review Comodo Firewall 11 Tested

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
ichito said:
Hi @bribon77
How would you compare this test to the test of SpyShelter on default settings?
Click to expand...
SpyShelter if you play is wonderful and very difficult to pass, although for me they are two different programs with the same goal, Maybe it is more aggressive SpyShelter but more difficult to understand(y)
 
  • Like
  • +Reputation
Reactions: Dave Russo, oldschool, stefanos and 1 other person
imuade said:
On Comodo Forums she was last active on March the 9th. I think she just stopped making videos about security products
Click to expand...
Are you certain about that? Her last post there was June 2018. The "last active" stat doesn't tell us anything. Even here...her last post was October 2018... then by some turn of events her account updated to "last seen" in January 2019... yet notably silent (no posts/updates).

Please show us her post from March 9, 2019.
 
  • Like
Reactions: Dave Russo and oldschool
Telos said:
Are you certain about that? Her last post there was June 2018. The "last active" stat doesn't tell us anything. Even here...her last post was October 2018... then by some turn of events her account updated to "last seen" in January 2019... yet notably silent (no posts/updates).

Please show us her post from March 9, 2019.
Click to expand...
Last active means she logged in and I said her last active time was on 2019, March the 9th. Her last post dates back to 2018, June the 9th.
 
  • Like
Reactions: Dave Russo, shmu26 and oldschool
Telos said:
That doesn't necessarily mean that CS engaged the login.
Don't you find it odd that she has not posted on any forum after October 2018?
I'd like to think that you are correct, but alas...
Click to expand...
She probably got a good job and doesn't have to waste her time arguing with noobs on forums.
 
  • HaHa
  • Like
Reactions: Dave Russo, bribon77, oldschool and 1 other person
Comodo firewall with either the block untrusted files settings like in above video or cruelsisters run rejected the file wont even run

But if you use proactive settings, just turn hips off and let the files run in containment, is there a risk the malware possible could escape the container somehow? Wich makes the insta block / run rejected more powerfull

I have watched some qihoo sandbox videos where the ransomware is run in sandbox and it escapes the sandbox

Such a simple insta block/reject rule can make MAJOR difference in protection
 
  • Like
Reactions: Dave Russo, oldschool, codswollip and 2 others
Moonhorse said:
Comodo firewall with either the block untrusted files settings like in above video or cruelsisters run rejected the file wont even run

But if you use proactive settings, just turn hips off and let the files run in containment, is there a risk the malware possible could escape the container somehow? Wich makes the insta block / run rejected more powerfull

I have watched some qihoo sandbox videos where the ransomware is run in sandbox and it escapes the sandbox

Such a simple insta block/reject rule can make MAJOR difference in protection
Click to expand...
A malware running inside the containment should not be able to escape... but why take the risk? If you block it, you are done. Plus, you could achieve the same protection level with the AV only, you don't need to install the FW (which is the module to cause more troubles on Windows 10)
 
  • Like
Reactions: Dave Russo, oldschool and Moonhorse
nikos200 said:
are any of this files malware????unknown yes.....but malware???????
Click to expand...
I suppose since the title.. But we can't know. Nevertheless, results would have been the same. The only two cases I can guess could bypass Comodo with this configuration or CS configuration are:
  • Target a vulnerability in Comodo
  • Use a compromised legit file signed by a Trusted Vendor (like CCleaner case back in the day*)
*this is an exceptional case, since if this takes place, Comodo wouldn't be the only one to fail detecting it, it would be a massive industry fail.
 
  • Like
Reactions: Dave Russo, nikos200, Rebsat and 6 others
Can anyone post screenshots of those specific tweaks which has been used in this video to block all ransomwares? thanks. As far as I know those specific tweaks are differ from cruelsister's tweaks.
 
Last edited:
  • Like
Reactions: Dave Russo and dJim
bribon77 said:
Comodo Firewall 11 brief malware test against Ransomware samples. Tested in Proactive mode configuration with a few tweaks to block all unknown file requests. No malware was allowed to run
Click to expand...

You only tested that ACL set on folders by CFW does what it supposed to do (it is a Windows protection mechanism). You can also set this manually and get the same results when trying to execute a program from such a folder :ROFLMAO:

Example added an ACL - DENY "traverse folder/deny execute" on my Downloads folder for EVERYONE

216103
 
  • Like
Reactions: oldschool, harlan4096, Dave Russo and 1 other person
imuade said:
On Comodo Forums she was last active on March the 9th. I think she just stopped making videos about security products
Click to expand...
Last thing I know is that she acquired a very well paid (freelance) job which would keep her of the radar for at least six months (non disclosure in her contract). So I start worrying when she does not pop up again in October/November.
 
  • Like
Reactions: Gandalf_The_Grey, woodrowbone, oldschool and 3 others

You may also like...