I am just curious about how others configure Comodo to offer as much protection as possible. It seems there are a lot of people that really like the firewall, even more so now because most other third-party alternatives, i.e. LnS, Outpost, Jetico, etc., are all dead. I like Comodo. But I know that things can always be configured better, in this case to offer better protection that the default settings. How do you chose to do that? How do you that the HIPS and sandbox configured? I used to use sandboxie and HMP.A. But honestly I like Comodo better, since it has a HIPS and sandboxie never really seemed to add any tangible benefit to me. I'm just looking for ideas.
Comodo has too many unsolved bugs; i spent hours to lockdown it, just to see that all my tight rules has been deleted the next day. And i'm not the only one to experienced it.
That's interesting. That's also not the first time I've heard of Comodo being hard to configure or having bugs. I guess I'm lucky, because I've never experienced any issues with it. I've certainly never had my rules deleted.
If you mean by "lockdown" no popups and silent blocking then the last my Comodo lockdown config was the following: FW: Custom ruleset HIPS: Safe Verbose AutoSandbox in default mode (Block Malicious, Virtual Unrecognized) After some period of training when there's no popups from FW and HIPS and no new installations it's possible to put FW and HIPS in "Do NOT show popup alerts, Block Requests". And yes, not every PC can get along with Comodo.
There my lockdown settings when i used Comodo: https://malwaretips.com/threads/com...etup-configuration-thread-setting-only.53271/ you will find other users settings, note that people posting on this thread are confirmed experienced comodo users. if you have questions , just ask there: https://malwaretips.com/threads/comodo-internet-security-v8-setup-configuration-thread.53121/
Chavez- Don't overthink things with Comodo, as that's where problems occur. Just because a product has a million checkboxes does not mean that one has to enable them all. Comodo is one of those rare products where less is more.
I have it configured according to cruelsister's recommendations and wouldn't consider using anything else. I don't spend all day everyday trying to break it, but it hasn't let us down on two systems in close to two years. Users ranging from beginner to medium ,banking, shopping , kids games. Truly been set and forget.
What the hell, this is way too much work and info if you ask me. This is not for the faint-hearted. And BTW, the "spoiler" feature has to be one of the most retarded things ever added to forums, it's so annoying.
Note: Those spoiler things are often not coded well and become a PITA if Javascript is disabled or they rely upon third-party scripts.
The " only rule ", with every HIPS, is " deny for default / allow for except ". I set Cis Defense+ at the beginning in Paranoid mode, and i never change it. Agree with n8chavez: if you set Defense+ in the higher mode you have a full control of your system, better than using the sandbox.
hehehe, for me it is "toying" and i love toying , one reason i have/had many complicated security softwares; softwares like Webroot or Emsisoft post OA era (despite being good) are deepest pits of boredomness
+ Being hater of "training mode" I still never did it completely as I don't like too many popups. ++ Didn't you ever "overtoy"? I regularly over-twist my security setup so my PC became to so comfortable to use.
Nope, i expect my system to be usable (for me) after tinkering it; and i have a good idea how my system should be.
I used cruelsisters config ,from her vid.Only difference is I didnt disable alerts as Ilike to see them.Nothings got past it in the last few months and totally happy with it. https://malwaretips.com/threads/comodo-firewall-8-2-0-4508-setup-and-test-part-2.46159/
Has anyone exported cruelsisters configuration within Comodo and made it available for others to import and evaluate on their own PC's?
I guess the video is straight from the horses mouth (so to speak) and takes about 5 mins to implement ...with a little pausing of the vid.
Yeah, I'm a huge fan of HIPS, and Comodo is quite comprehensive, but I don't want to make things too complex, that's why I prefer SpyShelter. Overall, Comodo is perhaps a bit more advanced, but SS also gets the job done.
With ReHIPS im totally satisfied for the moment , just have to fix some minor bugs and implement some usability features and it will be a superior HIPS.
REHIPS is starting to look interesting to me. I'm putting all my time into Bouncer, AppGuard (when development is going on), and Eset Smart Security right now though. I don't have the time, or setup to test REHIPS right now. HIPS is my favorite mitigation method.
Indeed , i love the idea of ReHIPS using both HIPS & Sandboxing (the 2 methods i prefer) via only Windows own mechanisms.
Please excuse me for being OT. I know from their site differences b/w free and paid. Anyway I ask is HIPS of SpyShelter free of good strength to use SS free for its HIPS?
You can take a look at the comparison, it seems like some features of the HIPS have been disabled, so it's up to you to decide if it's good enough for you. https://www.spyshelter.com/download-spyshelter/