- Status
Comodo calls their system default deny, but it is not true default deny like an anti-executable. When Melih speaks of default deny he means sandbox isolates physical system from softs run in sandbox. A true AE blocks the execution of a soft...
Comodo can be configured to be an AE by creation of a sandbox rule to block all Unrecognized files and de-selecting "Trust files installed by Trusted installers and Trust files signed by Trusted vendors."
If you configure Comodo to be an AE then the introduction of any new software - including Windows updates - is problematic. They will install, but be treated as Unrecognized. User can solve this issue by either disabling the configuration before installing softs\updates or add the new softs\updates to the local Trusted file list. Adding to the Trusted file list can take about 20 - 30 mins for C:\Windows... so some will find the second method a nuisance.
Last edited by a moderator:
VS adds files to whitelist automatically in Learning Mode (off). Alternatively you can train Comodo HIPS in Training Mode to create Allow rules - but for best results I add files/folders to Trusted file list manually.
Comodo does not automatically add files to Trusted file list - even System32 files - since not all are digitally signed by Microsoft. This means user must manually manage Comodo local file list... it is a bit of a rigmarole.
VS is faster and more efficient for user. Comodo's AE is not perfected... some file types can bypass it - and no one is sure if it will be fixed.
So in meantime, I use VS on one system and NVT ERP on another. On third I use AppGuard.
Last edited by a moderator:
- Jun 24, 2015
- 212
First of all, sorry for bumping an old thread as I'm unsure if its allowed in this forum.
If you would not depend on Comodo AV then your signature says that you are using CIS?
If you would not depend on Comodo AV then your signature says that you are using CIS?
@Sloth
I do use CIS. I rely upon the sandbox, firewall and rule sets much more than the AV. For typical use - my use - which is rarely download and install new softs and even more rarely visit questionable sites - CIS has proven to be quite good for me.
Best Regards,
HJLBX
- Sep 28, 2011
- 326
Select Do NOT show firewall alerts and set firewall to "Block all requests." That this setting blocks Unrecognized file access to the network is not immediately obvious...
but think about it... firewall alerts are generated generally only for Unrecognized files making outbound connects, right?
Last edited by a moderator:
- Sep 28, 2011
- 326
Okay...that's why i always set my Comodo FW to "Custom Ruleset" and i want to be always alerted by new connections.
- Jun 24, 2015
- 212
I use Emsisoft and Malwarebytes as my anti malware, with Online Armour as my firewall; I have few problems, even with outlandish plugging around different sites. I recently updated Comodo Dragon, and since then I have been pestered with nagging popups asking me if I want to instal Comodo Security.
If Comodo have to go about nagging their browser customers to instal their security system, they are making a big mistake as it infuriates the customer to have nagging popups appear every 12 hours.
In my case I am giv ing Comodo 48 hours to kill the popups by update, else Comodo becomes history as far as I am concerned.
If Comodo have to go about nagging their browser customers to instal their security system, they are making a big mistake as it infuriates the customer to have nagging popups appear every 12 hours.
In my case I am giv ing Comodo 48 hours to kill the popups by update, else Comodo becomes history as far as I am concerned.
- Jul 3, 2015
- 8,153
- Nov 19, 2014
- 2,350
Did you try CIS/CFW or CCAV? Because CCAV used to have the problem you mentioned but not CIS/CFW from what i know.
- Jul 3, 2015
- 8,153
- Nov 19, 2014
- 2,350
No idea. CFW really hates other programs a lot though. Try it because i didn't.
If the files were Intel files (with digital signature of Intel).. there is no option to sandbox them.
Are you sure about they are digitally signed files by Intel?
There will be no version 9.. it is now version 10. You can follow it. They just changed the name.
Comodo never keeps promises about the release dates..you are right about that.
Yes and no. Comodo has one of the best firewalls and I like the sandboxing. As far as detection ratio it sucks, but if a virus does get on it the firewall will most likely stop it from doing anything. Because of that I like to think comodo as one of the top dogs, but not necessarily the best.
- Status
Similar threads
-
- Locked
