Advice Request Free alternative to Glasswire

Please provide comments and solutions that are helpful to the author of this topic.

Status
Not open for further replies.
Deletedmessiah

Deletedmessiah

Level 25
Verified
Top Poster
Content Creator
Well-known
Jan 16, 2017
1,469
Telos said:
Link please. This doesn't sound right, or is out of context.
Click to expand...
She said in one of the threads few months ago when I was asking someone if I could use firewall component only. I don't remember which thread. But like I mentioned above, I'm unsure if using Comodo's firewall component only(with sandbox and everything else disabled) along with another AV like Avast free would be fine. @cruelsister can you clear things up?
 
  • Like
Reactions: Warrior
cruelsister

cruelsister

Level 43
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,224
Deletedmessiah said:
I'm unsure if using Comodo's firewall component only
Click to expand...

My Lord Messiah- DO NOT DO THIS! Although on the whole the Comodo Firewall is adequate by itself, Comodo has made an assumption (justifiable) that AT LEAST one other component- specifically either the HIPS or Sandbox- would be active. This assumption allows more efficient coding in that some protections will be made by one of the other components thus obviating the need for the Firewall to do so.

Specifically this really can be seen in one (important) case, that of Forked processes. Run a malware file that will attempt to Fork a process; the HIPS will alert to the resultant System Call and/or the creation of the spawned child. The sandbox will just contain the entire malware and the entire mechanism won't even happen. But if you disable both the HIPS and Sandbox and just run Avast (or whatever) AND that other Security app does not pick up on the malware, the Fork will be allowed to proceed and WILL successfully connect out.

So if you want just a Firewall, please, please go with something else like WFC. TinyWall, etc. These are self-contained apps that make no assumptions about the other Security that you have active and will block such spawn without issue.
 
  • Like
Reactions: Hector1, harlan4096, codswollip and 3 others
Deletedmessiah

Deletedmessiah

Level 25
Verified
Top Poster
Content Creator
Well-known
Jan 16, 2017
1,469
cruelsister said:
My Lord Messiah- DO NOT DO THIS! Although on the whole the Comodo Firewall is adequate by itself, Comodo has made an assumption (justifiable) that AT LEAST one other component- specifically either the HIPS or Sandbox- would be active. This assumption allows more efficient coding in that some protections will be made by one of the other components thus obviating the need for the Firewall to do so.

Specifically this really can be seen in one (important) case, that of Forked processes. Run a malware file that will attempt to Fork a process; the HIPS will alert to the resultant System Call and/or the creation of the spawned child. The sandbox will just contain the entire malware and the entire mechanism won't even happen. But if you disable both the HIPS and Sandbox and just run Avast (or whatever) AND that other Security app does not pick up on the malware, the Fork will be allowed to proceed and WILL successfully connect out.

So if you want just a Firewall, please, please go with something else like WFC. TinyWall, etc. These are self-contained apps that make no assumptions about the other Security that you have active and will block such spawn without issue.
Click to expand...
Thanks for clearing that up nice sis!
 
Status
Not open for further replies.

Similar threads

Dashke
    • +Reputation
    • Like
    • Applause
Fort Firewall functionality
Replies
1
Views
2,092
Other security for Windows, Mac, Linux
I Walk MY Way
I Walk MY Way
Trident
    • Like
    • +Reputation
    • Thanks
Serious Discussion Decoding the Trend Micro Components and Protection Model
Replies
24
Views
2,975
Other security for Windows, Mac, Linux
Mahesh Sudula
Mahesh Sudula
Victor M
    • Like
A.I. News Lessons Learned on How to Use Google Gemini AI
Replies
0
Views
714
Technology News
Victor M
Victor M

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top