- Jan 5, 2018
- 163
Yes it is definitely a bug, I am certainly not arguing with that! It is now working with UAC? How did you manage to get that working?
Comodo Firewall- Cruelsister Variation
- Thread starter cruelsister
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Yes it is definitely a bug, I am certainly not arguing with that! It is now working with UAC? How did you manage to get that working?
- May 26, 2014
- 1,339
I just used the Local Policy Group and rebooted, after that Comodo sandbox worked as expected.
- Jan 5, 2018
- 163
Oh okay, I misunderstood that post. I am happy you have got it working. I feel comfortable running CFW this way, CruelSister has done extensive testing with malware and with UAC off it hasn't resulted in malware getting past her setup. It UAC off resulted in being vulnerable to attack she would be yelling at everyone to keep UAC on.
- Jan 5, 2018
- 163
I have done some thinking and I have decided that I am not going to use CFW with this 'Partially Limited' bug with UAC on. Applications requesting admin privileges are the most important to contain with restricted containment.
What is even the point of using CS's settings if any program needing Admin privileges won't use those settings? Seems pointless.
@cruelsister Is it possible to get the Comodo dev team to get this fixed?
What is even the point of using CS's settings if any program needing Admin privileges won't use those settings? Seems pointless.
@cruelsister Is it possible to get the Comodo dev team to get this fixed?
- Apr 13, 2014
- 254
@cruelsister
Do you recommend to install any Anti-Ransomware software along with your CF (cs settings) in order to protect better from the latest variations of ransomware? Thanks
Do you recommend to install any Anti-Ransomware software along with your CF (cs settings) in order to protect better from the latest variations of ransomware? Thanks
Last edited:
- Apr 13, 2013
- 3,224
Rebsat- Absolutely no anti-ransomware application is needed! Trust me on this- not only will you not have to worry about ransomware, but you will be able to feel sorry for the Assholes that spend the time coding such garbage (Life will be Good)..
- Jul 6, 2017
- 2,392
I do not see the need for Anti.Rasoware with the configuration of CS, I'd say more, I've tried Rasomwares and none have passed the Sanbox Comodo Firewal. That is my experience with W7.
(I edit without using any, variation only with the CS configuration.)
(I edit without using any, variation only with the CS configuration.)
Last edited:
To go slightly off-topic for a second: What are your thoughts on CCAV nowadays? I don't know when you last checked it out but Comodo's added some pretty smart additions; the ability to block all network access for sandboxed files and fileless malware protection being the major ones.
- Apr 13, 2013
- 3,224
Bribon- You should see how CF handles the new RedEye ransomware (which acts by a different mechanism). I almost feel like coming out of retirement and doing a video (I have a song in mind that even Umbra would like).
Arequire- this is not off-topic in any way! I still have mixed feelings about CCAV. It still is way more system intensive than CF (there is no doubt about this (I always set my initial VM to emulate the biggest POS computer on the Planet and there is an extreme differnce between CCAV and CF, with CF being the lighest by far, far, far...); although the AV component (Cloud) in CCAV is superior to the one in CF for whatever reason, the Containment modality is not as restrictive as is CF at my settings. Now don't get me wrong- in either case (with CCAV or CF) your system will be proof from malware- but I still feel that CF is more elegant.
Arequire- this is not off-topic in any way! I still have mixed feelings about CCAV. It still is way more system intensive than CF (there is no doubt about this (I always set my initial VM to emulate the biggest POS computer on the Planet and there is an extreme differnce between CCAV and CF, with CF being the lighest by far, far, far...); although the AV component (Cloud) in CCAV is superior to the one in CF for whatever reason, the Containment modality is not as restrictive as is CF at my settings. Now don't get me wrong- in either case (with CCAV or CF) your system will be proof from malware- but I still feel that CF is more elegant.
- Jul 6, 2017
- 2,392
Friend forward your videos are very didactic. and your music is excellent. Greetings to Ophelia.
- Apr 16, 2017
- 2,613
CS, excellent idea, I hope you're not just teasing... :emoji_flushed:
I just tried CF with CS settings.
The speed issue is resolved for most connections 500Mbps< so that's good.
I still find it unusable. On the test machine it immediately put a little program I use to disable NIC's at the service level. Not surprising, it's a rather unknown entity and is used to eliminate unauthorized (and after hours) access to all of the network/wireless components of systems. The problems started when Steam was launched. After attempting to execute 6-7 different games, all of them were denied by containment.
Ultimately, while protective, it's impractical for deployment beyond a prosumer/techy type of system. VoodooShield IMO would be a far better alternative for the majority of systems, even always-on it's not going to fire off on most once the whitelist is propagated.
The speed issue is resolved for most connections 500Mbps< so that's good.
I still find it unusable. On the test machine it immediately put a little program I use to disable NIC's at the service level. Not surprising, it's a rather unknown entity and is used to eliminate unauthorized (and after hours) access to all of the network/wireless components of systems. The problems started when Steam was launched. After attempting to execute 6-7 different games, all of them were denied by containment.
Ultimately, while protective, it's impractical for deployment beyond a prosumer/techy type of system. VoodooShield IMO would be a far better alternative for the majority of systems, even always-on it's not going to fire off on most once the whitelist is propagated.
Didn't you do a reputation scan?
@ForgottenSeer 58943 Comodo was never made for beginners (even if CS' settings try to make it easier for them), its users can't expect to run it flawlessly without their own personal tweaks/settings. Your observations just prove it.
Comodo's "experts" here, we spent lot of time to shares infos about it.
Any Comodo users in MT, beginner or advanced, who are serious about using it, must read all the pinned threads here: Comodo
Comodo's "experts" here, we spent lot of time to shares infos about it.
Any Comodo users in MT, beginner or advanced, who are serious about using it, must read all the pinned threads here: Comodo
COMODO requires manual configuration and on-going file management. The more stuff on a system, the more management is required. The COMODO file reputation database is many months behind the current file distribution in userland. The database is updated by user submissions and files are not whitelisted until manually inspected by a human - so that ensures that the database is always out-of-date.
It is common that the user has to whitelist files on their own plus manage the COMODO whitelist.
Last edited by a moderator:
- Apr 13, 2014
- 254
@cruelsister
First of all, thank you very much for your good answer.
second...
Question:
How well does your CF (cs settings) protect the following components? and should I be worried about them?
1. MBR/GPT Protection
Protection from ransomwares and malwares modifying both MBR(Master Boot Record) and GPT(GUID Partition Table).
2. Network Drive Protection
Protect Network Drive files from ransomware destruction.
3. SMB Server Protection
Protect when ransomware damages files in shared folder.
4. Removable Drive Protection
Protect Removable drives from ransomware file encryption.
5. Exploit Guard
Protect vulnerabilities of web browsers and applications.
First of all, thank you very much for your good answer.
second...
Question:
How well does your CF (cs settings) protect the following components? and should I be worried about them?
1. MBR/GPT Protection
Protection from ransomwares and malwares modifying both MBR(Master Boot Record) and GPT(GUID Partition Table).
2. Network Drive Protection
Protect Network Drive files from ransomware destruction.
3. SMB Server Protection
Protect when ransomware damages files in shared folder.
4. Removable Drive Protection
Protect Removable drives from ransomware file encryption.
5. Exploit Guard
Protect vulnerabilities of web browsers and applications.
Last edited:
- Apr 29, 2019
- 168
so what security would you use on a W10 installation instead?
up to that question too pls ^
- Jul 3, 2015
- 8,153
The point is that Internet Security Essentials is not necessary. Comodo Firewall is good enough without it.
It is recommended, but not necessary, to disable Windows Firewall.
- Apr 29, 2019
- 168
I missread, though she was talking about Comodo Firewall
Would CC be enough as protection or should I top with something else like OSA+SysH and maybe EAM?
Similar threads
