COMODO Internet Security 5.3.174622.1216 Released!

This thread makes me want to install CIS on one of my machines, alongside SBIE.
I get the sense that it would be a complete package.

 

Yes, an excellent option although IMO the best companion for CIS is prevx SO free http://www.prevx.com/safebook.asp

The broswer protection is the only thing that CIS does not have although you can use Comodo Dragon. With Prevx you also get the benefit of their real time scanner.

I usually have Comodo with the AV deactivate and Prevx SO with all the detection settings to the MAX, so I get notice of any "weird" file, fp or not and I upload them to VT using this: http://www.virustotal.com/advanced.html#uploader

When DACS will be released I will not need the Prevx real time scanner anymore, just Safe Online.

EDIT:
Sorry I understood Superantispyware instead sandboxie I guess that you will sandbox the broswer using SBIE, but why dont use the on demand sandbox of Comodo? I have never try it but is there.

 

Page42,
CIS and sandboxie make an excellent combo. I can vouch for that. I've tested it for the last 2wks with and nothing has gotten through. Of course sandboxie is pretty bullet proof by itself. Its light and responsive.

 

What exactly browser protection should be ?

I mean, yes, you have some other tools like PrevxSO , but as far as I can understand that only protects if something malicious is already running in your system.
Protection against keyloggers ... well, first you have to be infected with keylogger in order for Prevx (or some other similar tool) to protect you against it.

If your system is clean and you are running CIS , what actually could happen to your system without "browser protection" ?

 

Well it's just another layer of protection, CIS is not 100% safe although is "super" highly improbable find something able to bypass it in a real scenario.
There is still some problems with the TVL and sometimes (everyweek) a trusted vendor decide to make malware and there are reports of this certificated malware in the whitelist so CIS is bypassed, but comodo fix this kind of issues quickly.

I look at my bank and and make shopping on internet, I just like to have another layer, just in case.

Right now I dont have it installed, I'm waiting to the Prevx 4 beta, I have Comodo AV disable so you can imagine how much I trust in the rest of the suite.

 

Hi guest,
The way I understand it, SBIE and CIS' automatic sandbox perform different tasks. According to Chiron on the Comodo forums, "the automatic sandbox in CIS is more like an automated Defense+". HeffeD over there has said basically the same thing, that "they aren't really doing the same thing".

Hi kjdemuth,
That is good to hear. Can you speak to the way SBIE and CIS auto sandbox are different? Is it like Chiron and HeffeD said?

 

People have said that the On Demand Sandbox of CIS really sandboxes the programs ala sandboxie. (There was someone saying this, NOT ME!)

 

Exactly my experience as far as Symantec is concerned. I don't go around bashing Norton. There's a strange attitude, almost a feeling of contempt towards some key applications that are offered free, almost as if by using them one has to surrender to intangible and obscure schemes deliberately orchestrated to entrap you. I've noticed this seemingly hostile reaction with Comodo, Sandboxie free, Google Chrome & Earth to name a few. I often think a certain deference and courtesy towards people who worked hard to offer a free product is due, but obviously some people don't seem to think so.

To remain on topic, I'm sure this has been probably mentioned, but how does CIS compare in terms of resources to an average AV+ Firewall?

 

Low ram, disk io, and CPU. High VM though.

 

Thanks, I might try it on an XP machine. Comodo has come a long way since it started offering a firewall.

 

Tried it both in XP SP3 machine and Windows 7. With Windows 7 I paired it with Prevx SOL/SBIE and it's good. In XP SP3 CIS, Avira Premium and SBIE. Have not used the CIS sandbox though but a friend says it's like the Avast sandbox. (Avast sandbox I have used previously much like the OA Run Safer). Some configuring guides are here:

https://forums.comodo.com/defense-sandbox-help-cis/configuration-guides-t60558.0.html


How the Comodo Sandbox works - technical discussion

http://forums.comodo.com/defense-sa...dbox-works-technical-discussion-t50176.0.html

One thing I'd like to see is that the CIS 2011 Complete have an option for "custom installation". It will not allow you to do so except install it with all components including AV. Just my two cents....


Cheers

 

Hello, if you like Comodo IS you can support it here:
http://antivirus.about.com/od/antivirussoftwarereviews/l/bl-bestantivirus2011.htm

For the best internet security suite if you think so, you can vote 1 time every day until March 8.

 

Thx for the link,voted up.

 

Can CIS be considered as set and forget? Basically for the complete idiot? or is interaction required.?
ellison

 

no it is not a set and forget type of app in my opinion. You have to answer questions quite often

 

Quite often? Not really. If you are consistently downloading and running new apps, perhaps, but if your setup stays the same, you won't see any pop ups after the initial ones.

Even then, most are the sandbox pop ups saying that Comodo is running the app you are running in the sandbox and don't require any input from the user.

 

First of all, I have no personal knowledge on this subject as I have not used CIS. But posts in their forum indicate that the installation can be on a per component basis.

Valentin N stated, "When you install CIS you may choose what you want to install, if you want AV, or only the firewall or both and if you want Comodo secure DNS server."

Another Comodo forum member, HeffeD, stated, "But yes, you can enable and disable all of the different components of CIS. AV, Firewall, HIPS, and Sandbox can all be disabled from the taskbar icon. Although if you want to disable the HIPS permanently, there is another setting."

This last quote from HeffeD pertains to enable/disable, which I understand is different than install/uninstall. So for me, the question still remains... some say you must install all components, and others say you can select which ones you want.

 

I may try it on a friends pc.He currently uses avast free and windows 7 firewall ,and firefox but says he keeps getting porn pop ups.Ive cleaned his pc i dont how many times ,so now getting a bit fed up.He only browses ,uses facebook and messenger (or so he says).However i dont want to put anytghing on there that would cause lots of popups ,because he wouldnt have a clue and probably pester me more.
ellison

 

You can install per component basis.

Thanks,
Harsha.

 

During the installation you can choose btw
Install everything
Install the AV
Install the sandbox D+ and Firewall (this goes together)
Install Comodo DNS

You can see all the screenshots of the installation process here: http://help.comodo.com/topic-72-1-170-1713-CIS-Premium-Installation.html

Also after install it in the settings you can also:
Deactivate Defense+ permanently (Requires a system restart)- Shuts down the Defense+ Host Intrusion element of Comodo Internet Security PERMANENTLY. The firewall and antivirus are not affected and continues to protect your computer even if you deactivate Defense+. Comodo does not recommend users close Defense+ unless they are sure they have alternative Intrusion Prevention Systems installed.

http://help.comodo.com/topic-72-1-155-1115-General-Settings.html

 

Some guides to configure CIS -

http://forums.comodo.com/guides-cis-b130.0/

These are really usefull if you are new to CIS/CFW.

Thanks,
Harsha,

 

I wonder what they will add or improve in the next version. any ideas of a release or beta to start?

 

The next thing is add DACS to CIS, and maybe a local behaviour blocker, but there is no date for that, at least CCE and killswitch have to be relased first.

 

---


I believe the "per component" basis is on the CIS free version and not the paid. I have a license for the Complete version "Comodo Internet Security Complete 2011" from a friend who did not like it gave it to me. The only option there was to:

a) install CIS Complete 2011
b) install Comodo Dragon
c) install Trust Connect/
d) activate CIS

It asked to uninstall my AV. So thinking that I can do a "change" in the Control Panel I did that. There wasn't any other option. So if you wanna use a different AV. Youll have to install CIS's AV and disable it. Then install your AV again. I ended up not using it altogether and went on using the free version with the option to:

a) install AV
b) install firewall
c) install GeekBuddy

Found this one with the same problem I had together with my friend.

https://forums.comodo.com/install-s...-questions-on-cis-complete-2011-t69240.0.html

 

Comodo sandbox uses the tricks as explained by Chrome to sandbox (restricted token, assign job token to limit access to user tokens, only Chrome also assigns a alternative desktop to catch messages to services). On top of that you have defense +

Spyshelter for instance also uses restricted tokens and also provides HIPS like protection. Seems to be the standard in policy management sandboxing using part of the OS.