- Dec 23, 2020
- 124
Used a lot of stuff over the years, this is what I basically always end up coming back to. Everything else always ends up disappointing me.
This setup may cause performance issues, system instability or conflicts between programs, and can hinder the effectiveness of the installed antivirus products.
Comodo - Firewall/Auto-Containment/HIPS all on max settings"Staff notes This setup may cause performance issues, system instability or conflicts between programs, and can hinder the effectiveness of the installed antivirus products."
Everything works great together. Why is my setup listed as 'Security Danger'?
Many reasons:Why is my setup listed as 'Security Danger'?
Security updates: Manual - check for updates, but do not install
Windows UAC: Disabled - never notify
Network firewall :None
Every possible Microsoft service: disabled
Manual MS Updates as deemed worthy
WiseVector works very well along-side Kaspersky AV, as discussed in the WV thread.
Comodo Firewall/HIPS/Containment works well along-side any AV I have come across.
The only components I'm using out of KTS are the ones listed.
When I say 'every possible', I mean every one that my day-to-day activities don't require. Even running all Blackbird/W10T options results in a stable system.
Sandboxie works on a different system level than Comodo sandbox.
All Sandboxie/KTS/WiseVector components are trusted in Comodo HIPS.
Bitlocker: I've never heard anyone using bitlocker's backdoor. I'm pretty sure only one case would be enough for Microsoft to lose it's reputation.What is wrong with manual updates? I am notified when one is available and based on the update I install if it provides a security patch.
Why would I enable UAC when I use Comodo HIPS? Why double up on prompts?
The way Network firewall is used in the template it refers to hardware firewalls such as routers, which I don't need since I tether my internet.
If anything, disabling Microsoft 'features' adds security.
Why is VeraCrypt faulty? It was audited and issues were patched. It is open source and more trust worthy than mystery code which most likely has a backdoor. If you have evidence that VC is actually faulty, then I would like to read it. To think that Bitlocker doesn't have a backdoor is a bit naive to me.
"because of connected data with your PC" What do you mean by this? How would it provide more security than a very long password?
Since you have a problem with Comodo's SB might as well use the option 2) which gives you SB/FW/AV/HIPS@HarborFront , so basically you recommend against running Sandboxie along-side Comodo SB/HIPS? I was concerned at first, but if setup properly they actually play nicely together. I like Sandboxie for my browser, because I can configure the sandbox to run off my Ramdisk, where as I can't do that with Comodo.
Edit: As far as I can tell, there isn't really any difference between KSC and KTS, and even the free versions both install all the modules, so it is still a matter of disabling everything besides the AV.
Do you always allow unknown apps to run on your system? Or you control them running in a sandbox like SB Plus?I do use Comodo SB in auto-containment mode for unknown applications, just not for my browser.
Yup, auto-containment by Comodo is one up over SB Plus in this areaI don't run anything unless I know what it is and believe it to be clean. If something unknown does manage to run somehow then it is automatically sandboxed by Comodo.