Video Comodo Firewall- Cruelsister Variation

Joined
Jan 5, 2018
Messages
178
OS
Windows 10
Antivirus
Isolation
#61
With UAC completely off Comodo Sandbox works as it should and now I dont get the popup that I mentioned earlier and it runs at the "Restricted" setting, so it is sure a "bug".

Thanks @Chimaira for the solution, anyway I think Comodo team should fix this asap.


I noticed that sometimes containment wont reset, now with UAC it works like a charm too.
Yes it is definitely a bug, I am certainly not arguing with that! It is now working with UAC? How did you manage to get that working?
 
Joined
Jan 5, 2018
Messages
178
OS
Windows 10
Antivirus
Isolation
#63
I just used the Local Policy Group and rebooted, after that Comodo sandbox worked as expected.
Oh okay, I misunderstood that post. I am happy you have got it working. I feel comfortable running CFW this way, CruelSister has done extensive testing with malware and with UAC off it hasn't resulted in malware getting past her setup. It UAC off resulted in being vulnerable to attack she would be yelling at everyone to keep UAC on.
 
Likes: Nightwalker
Joined
Jan 5, 2018
Messages
178
OS
Windows 10
Antivirus
Isolation
#64
I have done some thinking and I have decided that I am not going to use CFW with this 'Partially Limited' bug with UAC on. Applications requesting admin privileges are the most important to contain with restricted containment.

What is even the point of using CS's settings if any program needing Admin privileges won't use those settings? Seems pointless.

@cruelsister Is it possible to get the Comodo dev team to get this fixed?
 
Joined
Apr 13, 2014
Messages
237
OS
Windows 7
Antivirus
Avast
#65
@cruelsister
Do you recommend to install any Anti-Ransomware software along with your CF (cs settings) in order to protect better from the latest variations of ransomware? Thanks
 
Last edited:
Likes: Tiny
Joined
Jul 6, 2017
Messages
697
OS
Linux
Antivirus
Default-Deny
#67
I do not see the need for Anti.Rasoware with the configuration of CS, I'd say more, I've tried Rasomwares and none have passed the Sanbox Comodo Firewal. That is my experience with W7.
(I edit without using any, variation only with the CS configuration.)
 
Last edited:
Joined
Feb 10, 2017
Messages
1,021
OS
Windows 10
Antivirus
Comodo
#68
Rebsat- Absolutely no anti-ransomware application is needed! Trust me on this- not only will you not have to worry about ransomware, but you will be able to feel sorry for the Assholes that spend the time coding such garbage (Life will be Good)..
To go slightly off-topic for a second: What are your thoughts on CCAV nowadays? I don't know when you last checked it out but Comodo's added some pretty smart additions; the ability to block all network access for sandboxed files and fileless malware protection being the major ones.
 

cruelsister

Level 34
Trusted
Joined
Apr 13, 2013
Messages
2,379
#69
Bribon- You should see how CF handles the new RedEye ransomware (which acts by a different mechanism). I almost feel like coming out of retirement and doing a video (I have a song in mind that even Umbra would like).

Arequire- this is not off-topic in any way! I still have mixed feelings about CCAV. It still is way more system intensive than CF (there is no doubt about this (I always set my initial VM to emulate the biggest POS computer on the Planet and there is an extreme differnce between CCAV and CF, with CF being the lighest by far, far, far...); although the AV component (Cloud) in CCAV is superior to the one in CF for whatever reason, the Containment modality is not as restrictive as is CF at my settings. Now don't get me wrong- in either case (with CCAV or CF) your system will be proof from malware- but I still feel that CF is more elegant.
 
Joined
Jul 6, 2017
Messages
697
OS
Linux
Antivirus
Default-Deny
#70
Bribon- You should see how CF handles the new RedEye ransomware (which acts by a different mechanism). I almost feel like coming out of retirement and doing a video (I have a song in mind that even Umbra would like).
Friend forward your videos are very didactic. and your music is excellent. Greetings to Ophelia.(y)(y)
 

Slyguy

Level 32
Joined
Jan 27, 2017
Messages
2,174
OS
Other OS
#72
I just tried CF with CS settings.

The speed issue is resolved for most connections 500Mbps< so that's good.

I still find it unusable. On the test machine it immediately put a little program I use to disable NIC's at the service level. Not surprising, it's a rather unknown entity and is used to eliminate unauthorized (and after hours) access to all of the network/wireless components of systems. The problems started when Steam was launched. After attempting to execute 6-7 different games, all of them were denied by containment.

Ultimately, while protective, it's impractical for deployment beyond a prosumer/techy type of system. VoodooShield IMO would be a far better alternative for the majority of systems, even always-on it's not going to fire off on most once the whitelist is propagated.
 
Joined
Oct 23, 2014
Messages
1,072
#73
I just tried CF with CS settings.

The speed issue is resolved for most connections 500Mbps< so that's good.

I still find it unusable. On the test machine it immediately put a little program I use to disable NIC's at the service level. Not surprising, it's a rather unknown entity and is used to eliminate unauthorized (and after hours) access to all of the network/wireless components of systems. The problems started when Steam was launched. After attempting to execute 6-7 different games, all of them were denied by containment.

Ultimately, while protective, it's impractical for deployment beyond a prosumer/techy type of system. VoodooShield IMO would be a far better alternative for the majority of systems, even always-on it's not going to fire off on most once the whitelist is propagated.
Didn't you do a reputation scan?
 

Umbra

Level 85
Content Creator
Trusted
Joined
May 16, 2011
Messages
17,962
OS
Windows 10
Antivirus
Default-Deny
#74
@Slyguy Comodo was never made for beginners (even if CS' settings try to make it easier for them), its users can't expect to run it flawlessly without their own personal tweaks/settings. Your observations just prove it.

Comodo's "experts" here, we spent lot of time to shares infos about it.
Any Comodo users in MT, beginner or advanced, who are serious about using it, must read all the pinned threads here: Comodo
 

Lockdown

From AppGuard
Developer
Joined
Oct 24, 2016
Messages
3,103
#75
I just tried CF with CS settings.

The speed issue is resolved for most connections 500Mbps< so that's good.

I still find it unusable. On the test machine it immediately put a little program I use to disable NIC's at the service level. Not surprising, it's a rather unknown entity and is used to eliminate unauthorized (and after hours) access to all of the network/wireless components of systems. The problems started when Steam was launched. After attempting to execute 6-7 different games, all of them were denied by containment.

Ultimately, while protective, it's impractical for deployment beyond a prosumer/techy type of system. VoodooShield IMO would be a far better alternative for the majority of systems, even always-on it's not going to fire off on most once the whitelist is propagated.
COMODO requires manual configuration and on-going file management. The more stuff on a system, the more management is required. The COMODO file reputation database is many months behind the current file distribution in userland. The database is updated by user submissions and files are not whitelisted until manually inspected by a human - so that ensures that the database is always out-of-date.

It is common that the user has to whitelist files on their own plus manage the COMODO whitelist.
 
Last edited:
Joined
Apr 13, 2014
Messages
237
OS
Windows 7
Antivirus
Avast
#76
@cruelsister
First of all, thank you very much for your good answer.

second...

Question:
How well does your CF (cs settings) protect the following components? and should I be worried about them?

1. MBR/GPT Protection
Protection from ransomwares and malwares modifying both MBR(Master Boot Record) and GPT(GUID Partition Table).

2. Network Drive Protection
Protect Network Drive files from ransomware destruction.

3. SMB Server Protection
Protect when ransomware damages files in shared folder.

4. Removable Drive Protection
Protect Removable drives from ransomware file encryption.

5. Exploit Guard
Protect vulnerabilities of web browsers and applications.
 
Last edited:

Similar Threads

Similar Threads

Latest Threads