Configure Comodo Defence+ as anti-executable

Any way to configure Comodo Defence+ as an anti-executable only and to turn off all its other features?


P.S: I don't know if its already answered in some other thread. In that case please give me the proper link.

 

Make a search: there is a thread.

 

Hello,


See here:

When MrBrian created that guide it was meant for CIS version 4 but I think it might still work for version 5. I believe he updated it to cover v.5


Thanks



Carlos

 

That guide is written for CIS v4.x but the ideas there still work with CIS v5.x, except that with CIS v5.x one can't control DLL execution. You can't follow the steps there exactly with CIS v5.x because the user interface has changed in some places.

The second post in Tips for using Paranoid Mode also gives a description of what to do, but it isn't as detailed as the guide.

Another idea is you could use Defense+ Safe Mode and turn off automatic sandboxing. Then you will get alerts for programs that aren't on the whitelist.

 

Thanks guys...

 

switch to "block"

 

is it possible to use execution settings without enabling defence+? i just set mine to 'block' but it does not block anything with defence+ set to 'disabled'. it does however work with defence+ set to 'training mode'

 

AFAIK Defense+ must be enabled for Execution Control to work. If you only want Execution Control, disable the sandbox and uncheck all monitoring settings except for Interprocess Memory Acesses and Processes' Termination.

 

many thanks

 

You're welcome.

 

just out of curiosity, what would happen if i unticked 'Interprocess Memory Acesses' and 'Processes' Termination' aswel as the others? would execution control stop working? or just not work properly?

 

It wouldn't make any difference to Execution Control but CIS relies on these two settings being enabled for its own self-protection against interference and termination by malware.

 

brilliant mate thanks alot

 

You're welcome.

Regards