HIPS suggestion? Comodo + Threatfire + NOD32 + BOClean + ????

Hi Guys

Have done the research but still no wiser. Can anyone help?

Needs a HIPS and current choice being OA, DW, SSM, EQSand DSA. Have licenses for Pro Security (causes problems) and GSS.

Using XPSP2 with Comodo 2.4 + Threatfire + NOD32 v3 + BOClean 4.25 + ?

Any sound advice from those working with a stable secure setup that theyre proud of? I know I might have to change my current setup..

Thanks guys!!

Cheers!!!!

 

PS is the best IMO but u have problems so u have to use something else.

If u want classical HIPS: OA is good and easiest to use.
EQS has much more coversage but needs time to configure. Not straight forward. CFP Defence+ is another choice. Try each one of them and see what u like and what ur system likes. OA n CFP will give u outbound FW protection as well that is absent in EQS.

DW is a sandox and is very good with strong protection if u prefer a sandbox rather than clasical HIPS.

That,s a good setup as well. U can even drop BOClean here. Rest will be OK.

 

Use Comodo 3.0 with D+. I use to use Comodo 2.4 years ago and 3.0 has come along way. D+ can be a PITA at first but give it a week and it will calm down. If you use Comodo 3.0 dump TF cause you do not need to HIPS.

 

Thank you

 

Thanks I will try that one!

 

Yea Comodo Defense+ is one of the best hips programs, it gives you control over everything you could want and then some.

 

That's a bit much, IMO. NOD32 v3 covers all types of malware, including those covered by BOClean. Also, BOClean is a poller - eats cpu cycles a bit. With NOD & the HIPS you plan to add, you will have a very solid security wall. I suggest you drop BOC.

Why get a stand-alone HIPS when you're already running Comodo's old firewall? I suggest you upgrade to Comodo's version 3 firewall, which includes a full-fledged top-tier classical HIPS of its own (Defence+). Comodo's new firewall & Defence+ are designed to work extremely well together. You can get some good tips on configuring Defence+ HERE.

 

Thanks for the advice Bellgamin! I thought it was a bit resource heavy but didnt want to get rid of the protection.

 

DW extra protection: Comodo v3 (D+) + Threatfire + NOD32

Guys
Thanks for the advice!

I settled on Comodo v3 with D+ v3 0 21 329, NOD32 v3 0 551 0 &Threatfire with Sandboxie/SafeSpace on demand.

Would Defensewall add any protection to this as the deal of the day seems tempting with the software so highly rated?

M

 

Re: DW extra protection: Comodo v3 (D+) + Threatfire + NOD32

U can use SBIE, SafeSpace or DW- either of them alone with other sucurity software.

 

OK

Try this baby on for protection:

EQS (When out of Beta) + SandboxIE + Comodo D+ + Returnil

 

Nothing but NOD32 installed at the moment, and I'm seriously wondering if the proponents of those multi-program setups are actually any safer than I am.

 

Solcroft, may I ask which version are you running?

 

Two HIPS not needed.

 

Was running the latest version of NOD32 v3 antivirus. Just switched to AVG 8.0 an hour or so ago, though.

 

solcroft,
You're using LUA/SRP, so the security apps you use have little relevance

 

Thanks for the advice, I have a good choice of apps to try out now!

 

Not anymore... at least for now Back to an admin account for now, with only an AV, no firewall, and DMZ on my router. Got a few things I want to test over the next few days.

 

Flying to the danger zone...

 

Hmmm, I'm interested on what you're going to do

 

With easy heart I can say that I use only OA AV+ since 2007 summer. All I can say it was quite enough to stop and disable all and every threat that tried to compromise my system with my very risky security policy. I do not feel I need something additional

 

Me too!

 

Quite right solcroft:

I've dropped Comodo D+ for EQS but i still use it on other systems but only one. My purpose is to see if it would make a difference or not. Those days of running duo HIPS is long past but curiosity leads me always to see if two can co-exist without trouble or overlap.

Speaking of EQS, i'm stuck in neutral untill 4.0 becomes Final, hope it's soon but not holding my breath.

Alcyon's RuleSets in 3.41 are quite a set of coverages but they don't jive for me in 4 beta2 because i already tried.

btw, do you have an opnion on Alcyon's Rules for 3.41 yet or even tried? Curious to your opinion of them.

EASTER

 

Re: DW extra protection: Comodo v3 (D+) + Threatfire + NOD32

No it would provide ease of use.

D+ can be tuned down considerably, reducing pop-ups, enforcing the firewall only with some additional registry protection.

Level1 - CFP Pro with D+ (lightened D+ https://www.wilderssecurity.com/showthread.php?t=199867)
Level2 - DefenseWall 2.30 (default threatgate programs + ScriptDefender marked as untrusted)
Level3 - Your AV (NOD32)

Works seamless, easy and you could forget about other virtualisation aps and ThreatFire. DW is really great when others use the PC. When you know how to use SBIE/Safespace/Returnil etc you get more or less the same for free.