- Dec 23, 2014
- 8,598
You can do that with comodo firewall. Use CS settings plus do the following....
1. Enable CS settings in containment.
2. Enable cloud lookup in file rating.
3. Select all vendor certificates in vendor list by ticking Vendor Tab.
4. remove all and click "OK"
5. Now Go to settings>File List >Select all and click "look up". All files with legitimate certificate will be added automatically.
6. Disable the cloud lookup in file rating.
7. Now you can copy all those vulnerable "files" to the system. Everything except those files which were already in the file list will be automatically sandboxed if tried to run.
7. If you need to install anything just enable the cloud lookup in file rating for it and disable the same after installation.
It is similar to tweaked Kaspersky and a good solution in practice.
But, if the malware is already running in the system, then it has still access to the suspicious/malicious files in "protected folder". This can be prevented by using additional protection which allows only selected applications to access the Protected Folders.
If one could skip the requirements:
3.files in those folders can not execute themselves in the background without my knowledge.
4.files in those folders are 24/7 following the requirements in 1-3 that i already outlined, no matter if i close my PC and open it again. I don't need to start back the service to enable their containment using the 3 requirements.
... and assume that OS is clean, then there are many practical solutions available (like Kaspersky and Comodo Firewall).
Last edited: