Comodo-Best balance between ease of use and effectiveness?

Long title says most i think...ill watch for replies.
Im looking for the best silent to bullet proof ratio i can find.

 

Check out my sig. If you want to make it a little quieter put the firewall on "Safe mode" and add "create rules for safe applications."

While this may open you up slightly it is still very effective.

 

I agree with the recommendation by Hungry Man to run the firewall in Safe Mode but for a user for whom ease-of-use is important, enabling "create rules for safe applications" is unnecessary IMO. It's okay to leave this option disabled as enabling it doesn't in and of itself increase effectiveness AFAIK. The option is there for advanced users who may want to edit the rules created.

The CIS help file explains it this way: -

I would also recommend running Defense+ in Safe Mode. Thanks to the extensive whitelisting in v5, the days of Defense+ generating too many alerts seem to be over. My experience has been that the few alerts that do occur are mostly when installing new software, and the alerts are easy to understand and to respond to. If the software installer is a trusted application from a known trusted source, there is always the option to temporarily disable Defense+ during the install.

As to whether or not to enable the Sandbox, I think this is a matter of personal preference. I've disabled the Sandbox as I prefer to let CIS Execution Control alert whenever an unknown executable tries to run, with the option to deny, rather than let it run automatically in the CIS sandbox. For virtualization/sandboxing, I use Shadow Defender and Sandboxie anyway, so for me the CIS Sandbox is redundant.

 

I must have been confused. Thank you pegr.

 

Hi Hungry Man,

Nice to hear from you. Hope you are well and enjoying the weekend.

Regards

 

Same to you.