App Review Comodo Firewall vs a new Data Stealer

[ForgottenSeer 114834]

I've played with CIS since back in the day before it was a suite and just a firewall. With a knowledgeable user in the right hands, it can be an effective measure. The problem is most users do not understand the operating system and its functions well enough to do so. This not only for all the advanced options and tweaks, but also to understand the issues that locking a system down with cause, and of course I have yet to see this product bug free. Its a fun tool for enthusiasts to play with, but honestly I would never use it as my daily driver for security. As before, I did not enter this thread to go product bashing. I came in to clear some misleading things up because too much emphasis is placed on improper testing methods and sheds a terrible light on products more than capable of keeping users safe. People like myself, use this, as I did, when I discovered this website back in 2011, trying to learn about securing my system. My first year around this place was full of listening to misleading crap that led me to multiple fresh installs from system crashes. Of course on the bright side I'm became proficient with fresh installs. Many of those were attributed to playing with Comodo. I can remember just getting it installed and having to get through the first restart without the system crashing was a feat.

This is all fun and games for enthusiasts but we must remember not all who frequent here are those exactly, and they need straight honest answers not misled. Saying CIS is for average users is misleading for example. Saying tools that require input from users is absolutely ok for average to novice users "which so we are straight here, means they do not know the operating system, its services and uses well enough" to know how to handle such an application, is as stated misleading.

Its not rocket science, and all understand what I'm conveying here.

 

[rashmi]

I'm pretty sure running Restricted will just block the connection rather than showing a firewall alert.

Serious Discussion - Comodo Containment "Restricted" Restriction Level

For Containment, some Comodo users opt for @cruelsister's configuration, which primarily includes Proactive Configuration + Restricted (Restriction Level). According to @cruelsister, the "restricted" level prevents network connections from contained programs. Comodo users who use CruelConfig...

malwaretips.com

 

[Behold Eck]

Totally agree that Comodo is not for the average user but I do think it has improved slightly over the past year or so with the install/uninstall problems that really bugged me in the past. They could do away with that Cleaning Essentials thing as it totally messed up my Win10 start up some time ago. Like a lot of things in life I have to learn the hard way but tis better to learn from someone else`s mistakes.

Anyway the firewall/Hips/autosandboxing still works and importantly for me is very light on system resources. A good addition for any geeks setup especially with CS settings.

Regards Eck

 

[rashmi]

Comodo follows a default-deny approach, allowing approved and blocking unrecognized programs. Combining firewall and antivirus, Comodo introduced CIS in version 3. The antivirus served as a supportive addition to the default-deny setup. As a result, there have been no notable enhancements to the antivirus. Comodo is not suitable for users seeking an antivirus with powerful signatures. Average users shouldn't use Comodo, but it's one of the easiest default-deny setups to learn and use. I suggest installing Comodo on average users' systems, as long as you can handle it.

 

[ForgottenSeer 114834]

Comodo is not suitable for users seeking an antivirus with powerful signatures. Average users shouldn't use Comodo, but it's one of the easiest default-deny setups to learn and use. I suggest installing Comodo on average users' systems, as long as you can handle it.

I'm confused how you came up with the underlined. Wouldn't one need to know the operating system at an intimate level to know how to set and adjust a default deny set up? As far as toggling a few settings sure it's easy enough compared to making rules in a custom manor but still if you have no idea what you are toggling and how it affects the system I wouldn't recommend it.

 

[Decopi]

"Average users shouldn't use Comodo"
"I suggest installing Comodo on average users' systems"

... the carnival of contradictions never stops!

 

[rashmi]

Ah, the never-ending circus of "D"... where coloring and confusion dance hand in hand!

 

[ForgottenSeer 114834]

Thee ole expression if you don't like the weather wait around 15 minutes it will change does not apply to this thread, nope, it's more like the 5 year old with a light switch analogy, where they are flipping it back and forth so feverishly that it's a matter of time before the bulb shatters.

 

[bazang]

I suggest installing Comodo on average users' systems

Average user's need to learn how to clean install Windows anyways.

People do not learn by having the software do it all for them. The last thing the world needs are billions of ignorant, incapable users that do not know what to do. That is exactly what the world is full of. Until that problem is fundamentally solved the malware problem will never stop. It will only get much, much worse in the coming years because the bad guys are much better funded, have better resources, and they got Thug Life AI on their side. They just cannot lose.

 

[rashmi]

Average user's need to learn how to clean install Windows anyways.

People do not learn by having the software do it all for them. The last thing the world needs are billions of ignorant, incapable users that do not know what to do. That is exactly what the world is full of. Until that problem is fundamentally solved the malware problem will never stop. It will only get much, much worse in the coming years because the bad guys are much better funded, have better resources, and they got Thug Life AI on their side. They just cannot lose.

This is the extended information about average users in my comment.
"Average users shouldn't use Comodo, but it's one of the easiest default-deny setups to learn and use. I suggest installing Comodo on average users' systems, as long as you can handle it."

The first sentence is clear: I do not recommend Comodo for average users. In the second sentence, I meant "average users can use Comodo if they have someone to manage it." (In several Comodo threads here, I have shared these thoughts about Comodo and average users.)

 

[ForgottenSeer 114834]

Average user's need to learn how to clean install Windows anyways.

People do not learn by having the software do it all for them. The last thing the world needs are billions of ignorant, incapable users that do not know what to do. That is exactly what the world is full of. Until that problem is fundamentally solved the malware problem will never stop. It will only get much, much worse in the coming years because the bad guys are much better funded, have better resources, and they got Thug Life AI on their side. They just cannot lose.

That's a catch 22 scenario right there isn't it? Not one I recommend. Give all these users Chromebooks and teach them the basics with passwords and what to divulge. Much more tangible goal.

I mean if they misconfigure the systems wouldn't this leave them open and more vulnerable then they were, an easier target. Oh wait I understand this is a "let's just get it over with scenario" where evolution weeds out the incapable.

You are correct that uninformed users are literally the issue now days, not that the root of the problem isn't corrupt, no morals or ethics criminals without conscious.

 

[Decopi]

There are three different elements here: Comodo; its fanatics; and the user market.

Comodo as a company is irrelevant because of its history of mediocre products, which has always condemned it to a negligible market share. And its management team's stubborn obsession with a wrong business model that has failed for decades... also confirms Comodo's insignificance in the future.

With regards to the user market, it has always been, is and will remain the same, because that's human nature. Debating this on MalwareTips is pointless.

Therefore, the only topic worth discussing is the Comodo's fanatics. They're mentally ill, carriers of a pathological emotional attachment to the software, which among other serious problems, also makes them intolerant people. Worse still, their irrationality mixed with lack of objectivity transforms them into propagators of lies, myths, fallacies, contradictions, selectivity, manipulations etc. In this context, fanatics should once and for all recognize that:

1. Comodo is just a blocker;

2. As a blocker, Comodo is totally dependent on the user, either directly or indirectly. Also as a blocker, Comodo can't identify virus or malware (so, it cannot be used as an antivirus or antimalware);

3. 99.99% of users should not use Comodo, under any circumstances.

Until the fanatics recognize these three truths, they will continue to be the sole root of the problem, spreading immorality, corruption, and unethical and unconscientious behavior.

 

[Sandbox Breaker]

We have Xcitium deployed to tons of endpoints and some customers use container only with another NGAV we manage for them. The Xcitium settings are of course customised and hardened. I also have tons of family and friends I've deployed containment blades to and I can report zero issues.

Xcitium is only good if someone knowledgeable sets it up. Plus all of these systems are monitored via openedr and top MDR/DFIR staff including myself.

 

[bazang]

Comodo as a company is irrelevant because of its history of mediocre products, which has always condemned it to a negligible market share.

Market share is irrelevant because people are always interested in free products. Hundreds of millions of people will always use a free product over a paid product. So demand for Comodo will remain safe because people are always willing to try a free product. Those that like it keep using it.

Market share is a metric measured by revenue. Cannot do that for a product that has a revenue = $0.

And its management team's stubborn obsession with a wrong business model that has failed for decades... also confirms Comodo's insignificance in the future.

The entire point of Comodo is it was always meant to be free. The owner is a billionaire. He started with $0. That sure seems like one effective business person to any measure. He always wanted to give a decent product away for free.

There is nothing wrong with that business model. Google, for example, operates on that business model with its Chrome browser. To Comodo's credit, they don't scrape user data and sell it. A company like Google exploits users for profit whereas Comodo does not.

Therefore, the only topic worth discussing is the Comodo's fanatics. They're mentally ill, carriers of a pathological emotional attachment to the software, which among other serious problems, also makes them intolerant people. Worse still, their irrationality mixed with lack of objectivity transforms them into propagators of lies, myths, fallacies, contradictions, selectivity, manipulations etc. In this context, fanatics should once and for all recognize that:

Wow. Just wow.

There is something wrong with you, bruv. Did you bother to read anything you have posted about Comodo in the past years? The way you wrote the above points to you being fanatical, mentally ill, overly emotional, and intolerant. You're the only one that jumps into Comodo threads and makes unhinged rant posts.

Comodo fanbois\fangirlz are mentally ill liars and manipulators?

I'd say at some point Melih's words hurt you and you have never recovered.

Your "fight" against Comodo makes zero difference. In the time that you spent running to this thread and pounding out your rant at the keyboard, ten people downloaded Comodo and began installing it on their system. Melih does not know you exist. Comodo users who are not here at MalwareTips do not care about what you have to say. The ones that are here be like... "There's Decopi. We expected his usual nuclear meltdown." You are stuck and life moves on. That is your personal issues and you're fully entitled to have them. And you're entitled to express your opinions. It is just sad Comodo bothers you so much that you behave the way that you do.

 

[ErzCrz]

Comodo blocks things well, that's what it does. I don't expect it to do anything else. Some statements here like "They're mentally ill, carriers of a pathological emotional attachment to the software" really too far in my opinion. Anyway, not bothering to engage further and just glad there's an ignore button.

 

[ForgottenSeer 114834]

Comodo blocks things well, that's what it does. I don't expect it to do anything else. Some statements here like "They're mentally ill, carriers of a pathological emotional attachment to the software" really too far in my opinion. Anyway, not bothering to engage further and just glad there's an ignore button.

How is it any different than the thugs of gangs on here ganging up on a single user until staff reprimands that user in favor of the majority, even if the crowd is wrong and that single user was correct. I have witnessed this many times, and all of those times, it only took one popular person to push it in a online website where popularity actually means nothing realistically. These type behaviors are treated in mental clinics for real.

 

[overdivine]

there is no such thing as bad publicity

please, keep it going at least 5 more years

 

[bazang]

How is it any different than the thugs of gangs on here ganging up on a single user until staff reprimands that user in favor of the majority, even if the crowd is wrong and that single user was correct. I have witnessed this many times, and all of those times, it only took one popular person to push it in a online website where popularity actually means nothing realistically. These type behaviors are treated in mental clinics for real.

This is how all social media platforms work. Forums are a type of social media.

Digital Thug Life

Mob Rule - Mob Justice

 

[Chuck57]

I take the position that it doesn't matter whether the person using CIS, full or just firewall, is average or expert. That's like telling someone you've never driven any car but a VW beetle. You can't have a Corvette (Ferrari, etc) because you're not knowledgeable enough. It's a non argument because it is their computer to put on whatever software they choose. not for you, me, or anybody else to dictate.

 

[wat0114]

Many of those were attributed to playing with Comodo. I can remember just getting it installed and having to get through the first restart without the system crashing was a feat.

I had this happen to me the first few times trialing CIS years ago, the cause of which was HIPS enabled in "Paranoid mode". I figured out it was best to use Training mode, (although maybe I could have also used Clean PC mode and/or Create rules for safe applications??), knowing of course I had a system free of malware, then after a few reboots, logging in/out and allowing the account to lock, running common Windows tasks and all the programs I normally used, I would then lock it down in Paranoid mode. Of course cruelsister does not utilize HIPS, rather opting instead for her own custom approach that utilizes Proactive security with auto-containment and the firewall blocking new requests, a configuration recommended for new and inexperienced users as well.

Nowadays because I don't use Windows that often and because I've grown bored and weary of these types of security programs, I just utilize a free tool that enhances Windows defender.