Comodo's Myths & Facts

did you know some of these facts ?


  • Total voters
    12
Status
Not open for further replies.
D

Deleted member 178

Thread author
Last edited by a moderator:
D

Deleted member 178

Thread author
About The Anti-Virus

AV does monitor files in Sandbox or Virtual Desktop; applications run inside the Sandbox or Virtual Desktop can generate an AV alert (if Comodo has a signature for the file\application)
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About AV part2
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About Defense+ (HIPS)

  • Comodo behaviors are completely based upon File Rating = Trusted, Unrecognized and Malicious
  • File rating => Comodo Behavior(s):
  1. Trusted => no alerts\notifications (except when using HIPS Paranoid Mode)
  2. Unrecognized => alerts\notifications\auto-sandboxed\blocked (dependent upon settings)
  3. Malicious => alerts\notifications\blocked\auto-quarantined (dependent upon settings)
  • Safe Mode = "HIPS Alert Mode" for any Unrecognized files + Auto-Sandboxing of Unrecognized files
  • Paranoid Mode = "HIPS Alert Mode" for all files including Trusted files + Auto-Sandboxing of Unrecognized files
[NOTE: Paranoid mode creates alerts for every action, regardless of the file's rating that performs it, as long as there is no HIPS Allow rule for that specific action]
  • Unrecognized = Unknown; file is Unrecognized because it is Unknown to Comodo (not in Safe List); both terms are used inter-changeably by Comodo in different sections of Comodo Internet Security and KillSwitch

HIPS does not monitor activities in Sandbox or Virtual Desktop; applications running inside the Sandbox or Virtual Desktop will not generate HIPS alert
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About D+ (part 2)
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About Auto-Sandbox (Behavior Blocker)

  • The Run Virtually Action of the Auto-Sandbox is the exact same thing as the Run Restricted Action with a slight difference: Run Restricted = Run Virtually+ Restriction Level (possible restriction levels: "Partially Limited", "Limited", "Untrusted", "Restricted"). This means that the Run Restricted Action is actually a part of Run Virtually, and it exists only as a quick option (shortcut) to set the Sandbox to both virtualize and restrict specific actions of an item. Users can disable the restriction using Run Virtually whereas with Run Restricted it cannot be disabled.
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About Auto-Sandbox (part 2)
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About the Full Sandbox & Virtual Desktop
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About the Full Sandbox & Virtual Desktop (part 2)
 
Last edited by a moderator:
D

Deleted member 178

Thread author
About the Firewall

  • FW does monitor network activity in Sandbox or Virtual Desktop; applications run inside the Sandbox and Virtual Desktop will generate Firewall alerts - even Trusted applications will generate alerts (to avoid these alerts user should create permanent Allow rule(s))
 
Last edited by a moderator:
  • Like
Reactions: Solarlynx
D

Deleted member 178

Thread author
About File Rating & Trusted vendors (part 2)
 
D

Deleted member 178

Thread author
About Comodo Cleaning Essentials (Aurorun & Killswitch)
 
D

Deleted member 178

Thread author
Various Facts

  • The widget is useless? not at all, if you show the "Status Panel", you can by a single click on the right area, get a list of "Virtualized Apps", "Running Tasks" , and "Unrecognized Files".
    • Optimal configuration for most typical users will be Proactive Security using most default settings
    Defense+ (HIPS)
    • Applications run inside Sandbox or Virtual Desktop will not generate HIPS alerts; HIPS does not monitor applications executed inside the Sandbox or Virtual Desktop
    Sandbox
    • Malicious files downloaded\executed inside the Sandbox or Virtual Desktop will generate Antivirus alerts\notifications\block action\auto-quarantine (dependent upon settings); Antivirus module monitors applications downloaded\executed inside Sandbox or Virtual Desktop
  • Comodo marketting department use to say "Comodo can be used successfully by novices" ; this is the biggest myth, In fact Comodo is so complex and volatile that Comodo should only be used by security soft geeks and advanced users.
 
Last edited by a moderator:
  • Like
Reactions: Tiny and Solarlynx
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top