CIS V5 public beta

+1
Although boot-up time isn't greatly increased,there's a noticeable delay opening folders with a large number of files in.It's improving but still some way to go.

 

Remember that it's still a RC, the AV has been improved in every version in the beta testing, so I we can expect more improvements before the final version.

 

So, as of now, CIS V4 and CIS V5 beta are very resource heavy...

 

beta 5 is very hoggy just wanted to tested yestarday but to much for me

 

CIS 5 is lighter than 4.
The only thing that makes CIS "heavy" is the AV if you disable the AV the footprint in the performance is not relevant in my PC. But like I said the AV is beging improvement.

I remember now a performance test that was made a lot of AV's a few time ago (sorry I cant remember the name) and the score of CIS 4 was much better than the average, and it's suppose that now with CIS 5 would be better.

Try it without the AV

 

hey i didnt know it was the antivirus the one that made it heavy i will try again for sure thanks

 

The AV can be disabled with the sandbox and rest of the components still active?

 

Yes, just right click on the icon-> AV-> Disabled

During the installation you can choose install or not the AV, If you dont install the AV you will get the firewall+sandbox+D+

Take into account that the firewall have been always very light, the HIPS do not need almost any resources (like any other HIPS) and the sandbox only works when is required and is as light as sandboxie.

 

I have everywhere but my download area and browser cache excluded from the real-time scanner so I don't notice much slowness.

One quirk I've noticed with the beta so far is the huge number of logon sessions created and destroyed in the Security log by cmdagent. Every few seconds there's a logon/logoff sequence.


I keep getting update popups as well but the installer hasn't changed according to Flashget's "Check Update" feature.

 

So you rely to HIPS for these two zones ?

 

Those are the two zones I use with real-time-scan... the rest of my system I have excluded. I have Antivir and A-Squared as on-demand scanners as well.

 

How do you exclude everything except those 2 locations? I have thought about doing this. Right now only have system32 excluded.

 

You can exclude whatever you want from being scanned by the AV in the AV settings -> Exclusions
You can exclude every folder in C: excep "Users" or "Users/User" (in the last case you will need to exclude all the folders inside Users except User) folders (win 7) or whatever you want

But I wouldn't recommend this for everyone

If you only use the AV and a malware bypass the AV maybe the AV will create new files in excuded folders and maybe this files could be detected as malware by the AV or by the Cloud or the BB cloud.

 

Yes I understand what I'm doing. Just need the AV as a second opinion. I run the whole suite so I have D+ protecting me. Besides the fact that I don't really download or surf malicious sites. Along with using Firefox with Noscript and have an image just in case.

Just don't see how I can exclude locations while adding exceptions to those locations.

 

video for comodo
http://www.youtube.com/watch?v=h5BAo4pFmos&NR=1

 

thats verison 4.1. beta ver 5 will offer alot more

 

cool

 

http://www.youtube.com/watch?v=lhFMYhLyJTI Comodo 2011 V5 prevention test

 

Sorry..... I understood the opposite.

 

-http://www.youtube.com/watch#!v=4j7XlYYg7Ck&feature=related-

Another prevention video, seems that 2 files stay out the sandbox (this is normal if you understand how the sandbox works) but like "always" the computer is not infected.

 

1] Has the issue of grabbing the files from the sandbox been resolved?
We had to go to: virtual to take file by file we considered safe or create a shortcut to the virtual, which was unacceptable

2] Can SB be cleared now from GUI?

 

Did my questions kill the thread? :crowd:

 

1) I don't understand very well your question maybe you could try to explain it in any other way.

2) No yet, anyway my sandbox folder is always empty, although I only sandbox a very few applications, when I trust the application I add it to my trusted files.
I read in comodo forums that maybe they will add an option to delete all the files created by the application sandboxed after the app is closed.

 

1] SB is on, I download a file, a jpg, an exe, to be able to see it on my HDD and then use it/ open it I used be forced to go to:

C: VritualRoot and take my downloaded files from that folder because...

When I was trying to save the file with Opera, there it was, saved. When I closed Opera, went to D: documents the file was gone/ invisible

Can you see what I mean?

 

I understand the problem now but I dont know if is a bug or the way the sandbox works, you can ask in Comodo forums.

BTW the 1st of september a new version will be release, probably the final one.

Comodo v5 is here!!