I am a very safe surfer... I have NEVER had any virus/malware of any kind... any scanner I have ever ran, has only found a few tracking cookies.

But, lately I have become very curious about a simple Phone Home control program.

After spending at least 8 hours/day reading Wilders posts the last few weeks, I do not think I am any closer!

I almost got sucked into the current paranoid of HIPS. (Thank [your current deity] for GHOST.)

Since I already have a HW Stateful Firewall, can Comodo Firewall Pro be neutered (assuming CFP is male) to just monitor outbound application network connections?

Is CFP the right tool I am looking for?

Mike

Just go into Comodo's settings and disable the Network Monitor. Comodo is what you are looking for, but you should use FireFox for your web browser to eliminate possibilities of ActiveX exploits coming through InternetExplorer. If you don't like the idea of a HIPS, give Samurai a try - it will make it's changes and leave you alone after that.

{QUOTE-> Just go into Comodo's settings and disable the Network Monitor. Comodo is what you are looking for... <-QUOTE}Thanks!

I do use Firefox (see my signature) 99.99% of the time with NoScript (I only use Temporarily allow somesite).

??? Samurai... http://turbotramp.fre3.com/

{QUOTE-> Samurai version 2.7
A Host-based Intrusion Prevention System

This is the only HIPS recommended in the book Professional Rootkits! Ric Vieler, Wiley Publishing Inc. <-QUOTE}
Again, Thanks!
Mike

{QUOTE-> Since I already have a HW Stateful Firewall, can Comodo Firewall Pro be neutered (assuming CFP is male) to just monitor outbound application network connections?

Is CFP the right tool I am looking for?

Mike <-QUOTE}

Actually, if you just want outbound application monitoring, there are other firewalls that will do the same job and take up much less resources than Comodo. Kerio 2.1.5 is very, very light and would do the trick, and runs much ligher than Comodo.

I wouldn't recommend Kerio 2.1.5, it does not cover all outbound traffic (which flinchlock seems to want). There are also current advisories on Kerio 2.1.5 over at: http://secunia.com/product/1493/?task=statistics

If Comodo is too heavy, maybe go from there, but if not then it is most likely the best choice.

If you just want simple allow/block prompts you can try ProxyFirewall (http://proxyfirewall.org/). You could also use AppDefend, just disable all its features except for Network Access (or whatever its called).

{QUOTE-> I wouldn't recommend Kerio 2.1.5, it does not cover all outbound traffic (which flinchlock seems to want). There are also current advisories on Kerio 2.1.5 over at: http://secunia.com/product/1493/?task=statistics <-QUOTE}What about ZA 4.5.594? (http://secunia.com/product/150/ = "There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied.")

{QUOTE-> If you just want simple allow/block prompts you can try ProxyFirewall (http://proxyfirewall.org/). <-QUOTE}Interesting product, but dose not show any system type processes.

{QUOTE-> You could also use AppDefend, just disable all its features except for Network Access (or whatever its called). <-QUOTE}I can not find the difference between the Free and Paid.

Mike

Can anyone tell me if Comodo has stealth mode like Zonealarm? Will Comodo have it in its version 3?

@flinchlock, your in luck: there just recently was a thread on that exact subject (http://www.wilderssecurity.com/showthread.php?t=173113)

@thanatos_theos, Comodo does stealth your computer.

WSFuser,

How does Comodo stealth my computer. Is this stealth mechanism the same with Zonealarms'? Does it hide my ip address? I think it does not hide my ip address because when I go to some websites, my ip address is posted. Any comments?

thanatos

Comodo stealths your ports but not your IP. Its a firewall afterall.

To hide your IP you will need a different software like GhostSurf (http://www.tenebril.com/consumer/ghostsurf/) or Hide IP (http://www.v7soft.net/hideip-platinum/).

Looks like CPFV3 may improve it's RAM usage if this is one of your concerns. It's due out the 14th, but I wouldn't hold my breath. It's something to keep in mind.
{QUOTE-> so far its under 10Meg... no promises about keeping it under 10 meg (we are working on it..)... but it looks promising...
yep.. its much more powerful and hopefully will use less memory... cool ha Smiley

Melih <-QUOTE}

Flinchlock, I have not used ZoneAlarm in a long time - Comodo is more secure (leaktests).

thanatos_theos, here is an interesting read on the issue of 'stealthing': http://www.matousec.com/matousec/blog.php?blog=24-ICMP-blocking_-bad-idea-or-security-improvement_

I personally believe in stealthing, but that article may help you learn more about it and come to your own conclusions in the process.

Comodo really is the best according to matousec, followed by Jetico v2. WSFuser, are those ip hiders freeware or not. Are they also standalone? I think a computer will be much safe if its ip address is hidden. But some sites require your ip. So should I hide or not my ip address?

Lookup thinks such as: TOR, Toriffy, Free Proxy, Proxy Firewall, Pay Proxy

{QUOTE-> You could also use AppDefend, just disable all its features except for Network Access (or whatever its called). <-QUOTE}No thanks... bye bye George! :gack:

Mike

Using AppDefend wasn't a bad idea ;\