Serious Discussion Comodo Internet Security 2024 Beta is now available

[Shadowra]

The video from your favorite tester on Comodo Beta 2024 will be released tomorrow! (You pushed me into it ^^)

 

[cruelsister]

The video from your favorite tester on Comodo Beta 2024 will be released tomorrow! (You pushed me into it ^^)

Excellent! (but remember that gang-banging malware would be more a test of resources bled into the VM then sandbox protection).

 

[Shadowra]

Excellent! (but remember that gang-banging malware would be more a test of resources bled into the VM then sandbox protection).

With the samples I've used (Exe yes, but VBS, HTA, JS etc), you shouldn't be disappointed
Comodo was the default.
(I'm going back to editing the video, I'm at 80%)

 

[Pico]

@cruelsister
Thank you for your explanation, it did help to some degree.

It remains unclear whether CIS 2024 got any bug fixes which were discovered in previous versions.
Can we state that CIS 2024 is better than previous version in this regard?

 

[simmerskool]

I will be preparing real world, evasive malware and performance test tonight. Shall Comodo 2024 beta be included? What do you guys say?

sure include CF but suggest you do it at @cs settings...

 

[Pico]

And for many years I collaborated intensively, finding and reporting bugs/tests. However, I did that in the right place: Comodo' Forum.
Unfortunately that experience was terrible due to Comodo' lies, manipulations, censorship and many other bad behaviors.
I ended up frustrated, not with you, not with @CruelCF, not even with Comodo, but with myself, because of my time lost, tons and tons of hours sharing my bug reports, images, videos etc... for nothing.
And then, I said to myself: "Never Again".

 

[Trident]

Thank you for your offer.
IMHO, current beta stands more for an omega than for a beta, too many bugs. It doesn't seem to be a beta, it seems to be a kind of pushed raw version of a beta.
I think that tests and conclusions now might be premature (due to the current bugs).
Knowing that you @Trident can make great objective tests, if you ask me, I prefer to see your test on a less bugged version, a more normal version, with minimum standard acceptable bugs.

Maybe we can delay or repeat the test till the moment someone reports that Comodo final is released… I’ll think about it. Or a video with the test will be published but the product will be excluded from the strict protocol of final scoring (this time it will be even stricter). Otherwise it may be unfair.

 

[cruelsister]

@cruelsister
Thank you for your explanation, it did help to some degree.

It remains unclear whether CIS 2024 got any bug fixes which were discovered in previous versions.
Can we state that CIS 2024 is better than previous version in this regard?

Hard to tell with an initial beta. Regarding bug fixes, it's really up to those that had them to attempt to reproduce the issues. I do hope, however that with the initial beta builds folk will avoid making any potentially ill advised tweaks to things like the HIPS module (which is of dubious value anyway), as any issues that arise should be shown to be a coding issue and not a user issue.

 

[ForgottenSeer 100397]

Yes. Run it just as installs, with no adjustments. I'm curious if they did adopt Cruelsister's settings. If so, it ought to be good without tweaks.

Did you read that somewhere? The settings are still the same.

 

[simmerskool]

Maybe we can delay or repeat the test till the moment someone reports that Comodo final is released… I’ll think about it. Or a video with the test will be published but the product will be excluded from the strict protocol of final scoring (this time it will be even stricter). Otherwise it may be unfair.

or maybe you should go ahead and see if you see any relevant security "bugs." All I hear from some folks is "bugs" without any description -- meanwhile @Shadowra just posted video and "bugs" did not seem to be the theme of that video. It appears "recommended" for firewall containment with a note the av side could be / should be better... more or less consistent with what @cruelsister has been saying, or so it seems. Curious to see your report compared to @Shadowra's. (imo fwiw )

 

[Chuck57]

Did you read that somewhere? The settings are still the same.

I read it, I think, on the Comodo forum.

 

[ForgottenSeer 100397]

I read it, I think, on the Comodo forum.

Okay. However, the settings haven't changed.

 

[simmerskool]

Okay. However, the settings haven't changed.

I got the sense from @Shadowra's video that there are changes, but I could be wrong about that. I have not tried it yet.

 

[Chuck57]

I got the sense from @Shadowra's video that there are changes, but I could be wrong about that. I have not tried it yet.

Now it contains everything in the sandbox, just as CS settings do. Regardless of the firewall settings being the same, it sounds as if it's an internal change they made to tighten it up.

 

[ForgottenSeer 100397]

With all due respect, Comodo' AV is offered as a stand-alone feature. Therefore, any average-Joe may install the AV under the (wrong) belief that the AV is good as the Firewall is. At Comodo' webpage there are no alerts informing users that the AV must be used as a complement of another feature.

But even if you're right (and I'm wrong), facts are facts, and the fact is that Comodo' AV is (at least) not good. Calling it "trash", "not good", "insufficient" etc, it's just semantics, nothing changes the fact that Comodo' AV is not good. Even the sole fact that Comodo' AV may work only as an addition of another feature... is terrible bad. You're right, it's great the freedom to use Comodo' Firewall with another AV. But most of the average-Joe doesn't understand that, and I repeat, Comodo' webpage induces the use of its AV as a stand-alone.

Comodo’s core features are Auto Containment and File Rating. However, Comodo AV is the weakest module of CIS. All installation options and configurations have "Auto Containment" enabled, including Standalone AV. You have Auto Containment disabled only when you activate Firewall Security under Configurations.

 

[vaccineboy]

Can anyone also comment on the resource usage with this new beta please?
One point that keeps drawing me to Comodo is its low resource usage. Thanks.

 

[Sandbox Breaker - DFIR]

Auto contain works with Harmony Endpoint installed on W11.

 

[ErzCrz]

Can anyone also comment on the resource usage with this new beta please?
One point that keeps drawing me to Comodo is its low resource usage. Thanks.

Very low usage when i tested it out briefly.

 

[ForgottenSeer 100397]

There is an entry called "Registry" under Logs-FileListChanges. Its Rating is "Unrecognized". The stable version also has this entry. Does anyone know what it is?

 

[simmerskool]

I just installed CIS_2024_ beta v12.3.0.8088 sha256= 908564493b32a956a9ee48f9c8ecaf09948c85ea3d446cfc28f2cacb66f99f88
but I think I made a mess of it (user error) or it really is buggy
On win10_VM I first uninstalled old version of CF, (no leftovers) then ran the 2024 installer, component(s) just the firewall, it got to 19% and reported "cannot launch setup" -- package corrupted (but the hash matched at VT ) and ERROR 4294967295 (WTFIT)**. Assumed failure had something to do with AndyFul's SWH settings ON or not also selecting to also install AV (VM is basically empty otherwise) So tried again and I did both, first turned off SWH settings & reset to windows default, and then ran CIS installer again and selected both AV and firewall. 2024 appears to have installed ok the 2d time, although I did not really want comodo AV. Interface is just different enough and I have no confidence the settings are optimal or anywhere near @cruelsister's settings. I opened my vpn and it went into containment but did have a popup offering me the option of not running in sandbox in future, I said ok to that. Edge seems not to be in sandbox. Bottom line for me, uncomfortable, I'll probably post this and then shutdown this VM / bis wir uns wiedersehen
PS ** google found this same error at comodo forum, a few posts, clueless ...