AV-TEST Product Review and Certification Report – May-Jun/2013

One pop up giving a file unlimited rights? So if you don't want to be flooded with popups, I have to either give unknown files unlimited rights or not run them at all?

 

Or not run them at all? NO, you can run isolated which is the default action.

 

And Unlimited Rights popup is for Unknown Installers i.e if the program is found in Comodo TVL or Cloud Whitelists then no popup.

 

Which causes trouble in case the application needs to do modify files outside of the sandbox.

 

If it's malware you don't want it running anything outside the sandbox. If it isn't malware and you know it isn't then you wouldn't run it sandboxed in the first place.

 

You can't always know whether something is malicious or not.

 

Was LOL no one had mentioned Bitdefender's excellent performance here

 

This was about you saying that CIS alerts for every single application that runs. I've explained how that isn't the case anymore with default settings, so I'll leave it there.

 

This would have been the case with v3 without any use of whitelist.

 

Don't leave it there. Give some advice what to do when an application can't run in CIS sandbox but we don't know whether it's malicous or not. Oh and HIPS is turned off by default settings because we don't want too many pop-ups.

 

Zonealarms low protection score was due to its poor performance against 0-day threats.

 

Yeah, gotta give credit where its due.

 

These are my favorite tests. I usually find the results close to my own tests, and I like the way the data is presented. Very easy to read & understand.

 

You necessarily have to configure CIS to give you lots of alerts, otherwise you're stuck with running any application whose safety you are unsure of inside a sandbox, which is annoying as it can cause the application to not function properly. In a realistic scenario, CIS will indeed flood the user with popups.

 

Emsisoft not included? does anybody know why?

 

Not in default settings as already pointed out.

Edit: If you're unsure of a files safety I'd say you need to change your download habits before you even worry about how your security product will handle it.

 

Well that's easy, Check with an on demand scanner. You..Silly sausage

 

The default settings, as I said, force you to either be absolutely certain of what you're downloading or run programs in a sandbox. Hence, they suck.

My download habits are perfectly fine. Downloading programs from 100% trusted sources all the time would be unnecessarily costly.

 

Kaspersky also forces unknown programs into a restricted area. No av is 100% right 100% of the time. Some if not all av's are capable of falsely blocking things. Can you explain what you mean about using trusted sources 100% of the time being costly because I don't understand what you mean?

 

Seen your comments is clear that you haven't use CIS in the last years. The whilelist will remove the 99% of popups if any from the apps you have installed.

The results from AV-test does not come from the HIPS protection, it comes from the sandbox, the local AV and cloud AV, the cloud file rating, valkyrie which is one of feeds for the cloud AV..., so all the conversation you have had is irrelevant. Please inform you better before continue posting about CIS.

 

Completely yes. Whitelisting challenge is like Blacklisting. They will never know all safe programs. But they can try to white list the most known ones...(which is already the case).

 

@AVusah: Who's forcing you to just rely on your knowledge and Comodo's Sandbox? Along with what guest said, services like VirusTotal exists for a reason. Do you even use on-demand scanners?

 

Does Norton?

Programs that I currently get for free from untrusted sources I would have to pay for to get from trusted sources.

Actually I installed Comodo Firewall about a month ago, and almost immediately had to remove it because I was flooded by annoying popups.

No one. The point is, other security software can provide similar levels of protection with much less annoyance.

 

Every product has false positives.

To be honest if you're stealing software you deserve to get infected. But to be fair if you're going to download from an illegal source how can you possibly expect any program to 100% protect you. Avoiding cracks/patches and torrented software in general is rule number 1 in avoiding infection, yes I'm aware all cracks aren't bad but still a lot of them are. I'll no longer discuss this with you if you're using cracks/patches etc and then complaining that comodo sandboxes them because they're not on it's white list.

The way I see it is if you're going to steal software then don't expect other software vendors, including security companies to protect you. Virustotal is always the best way to scan anything you're not sure of, but even then using crack and patches you can't ever be 100% sure. So if I was you I'd learn how to use clean, legal software from trusted sources, perhaps, just perhaps they will be in Comodo's whitelist

 

You don't seem to understand the definition of the word "steal." Not everyone likes to waste money.