Which Elements of Comodo do You Use?

[bribon77]

An advanced user doesn't need many programs. Because he knows what is installed and what runs.

 

[ZeroDay]

Just out of curiosity, what does the true "advanced user" need, in terms of security software? Assuming he is a home user with normal computer purposes.

Windows defender + WFC + OS Tweaks standard user account, group policy changes etc. a true advanced user would need very little 3rd party software, but what we need and what we like to play with security software wise are two totally different things lol.

 

[shmu26]

Windows defender + WFC + OS Tweaks standard user account, group policy changes etc. a true advanced user would need very little 3rd party software, but what we need and what we like to play with security software wise are two totally different things lol.

For me, it's easier to use 3rd party security softs than it is to tweak the *** out of native Windows features and live with the resulting restrictions.

 

[ZeroDay]

For me, it's easier to use 3rd party security softs than it is to tweak the *** out of native Windows features and live with the resulting restrictions.

I agree. I just meant that advanced users can IF they want secure their OS using mainly built in tools.

 

[bribon77]

(I do not consider myself advanced) ... But, I have spent a lot of time with the Firewall control, Exe Radar and Sandboxie and, I have not been infected.
I have also been alone with Comodo Firewall with the configuration of Cs and Sadboxie and I have not been infected.

 

[cruelsister]

But how many computer users can be considered Advanced? Remember those of us who know we are here to take care of our less adept Sisters and Brothers.

 

[ZeroDay]

Well, my list of qualifications, experience and current position would pretty much seal the deal for the advanced badge. Maybe if I pay AV-Comparatives they'll give me an Advanced++ badge, does anyone know how much they charge for the Advanced++ cert?

 

[shmu26]

(I do not consider myself advanced) ... But, I have spent a lot of time with the Firewall control, Exe Radar and Sandboxie and, I have not been infected.
I have also been alone with Comodo Firewall with the configuration of Cs and Sadboxie and I have not been infected.

If you used WFC, NVT ERP and SBIE, then you are an advanced user.

 

[bribon77]

If you used WFC, NVT ERP and SBIE, then you are an advanced user.

You never stop learning, my friend.

 

[ZeroDay]

You never stop learning, my friend.

That's very true.

 

[JHomes]

None. I have too much self respect.

 

[shmu26]

Does anyone know how to tweak Comodo HIPS registry protection, so it will only alert for critical registry areas? Ditto for file modification.
I think that most of the HIPS overkill is happening in the registry area.

I tried HIPS paranoid in Firewall config, but I was disappointed. It ruins the execution control. Once you allow a process to execute one thing, it will be allowed to execute all things.

 

[klaken]

Does anyone know how to tweak Comodo HIPS registry protection, so it will only alert for critical registry areas? Ditto for file modification.
I think that most of the HIPS overkill is happening in the registry area.

I tried HIPS paranoid in Firewall config, but I was disappointed. It ruins the execution control. Once you allow a process to execute one thing, it will be allowed to execute all things.

Hip alert of the system's cirtic things ..

Your problem is that it is so configured by the simple fact that 1 program could send you 5 to 50 alerts depending on your actions.

Believe me is frightening .. although I think that in the configurations it can be deactivated (I saw it once).

 

[Overlord]

None.

 

[Evjl's Rain]

I have a suggestion, how about blocking wscript, ccscript, powershell and java.exe and javaw.exe + block malicious extensions (.scr, .js, .jsw,...)
block the internet connection of those processes + set the "Ask" rule of cmd.exe when it wants to connect so we can control it
I use auto-container to block powershell processes

Spoiler: screenshots

 

[shmu26]

Hip alert of the system's cirtic things ..

Your problem is that it is so configured by the simple fact that 1 program could send you 5 to 50 alerts depending on your actions.

Believe me is frightening .. although I think that in the configurations it can be deactivated (I saw it once).

Yes, you can deactivate registry protection, and a whole list of other actions, too. I am more interested in leaving it activated, but configuring which registry areas it monitors.

 

[Oxygen]

None of them because I don't see the need for any of it.

 

[Soulbound]

In the days of 5.12 I would use CIS, but since v6, I stopped using it completely in my main system as I didn't like the direction it was heading.

Nevertheless, one of my systems runs CIS on default settings because is good enough for the use that the system has (youtube, twitch and steam games), so it gets Firewall and HIPS vote. Reason for CIS? cant handle McAfee Endpoint Security very well due to its specs

 

[klaken]

In the days of 5.12 I would use CIS, but since v6, I stopped using it completely in my main system as I didn't like the direction it was heading.

Which direction do not you like

 

[ForgottenSeer 58943]

Obviously, the desktop widget is by far the most important feature of Comodo! I am sure that all users will agree!

I selected that to troll. I would never, ever use Comodo 'anything'. Period. Even their crap browser and half-baked SaaS.