Do i need CMF if i'm using ThreatFire ? | Comodo Memory Firewall Beta Corner

RejZoR

Comodo's Hero

Offline

Posts: 1045

Do i need CMF if i'm using ThreatFire ?

« on: December 30, 2007, 02:04:55 PM »

WHat title says. I'm using ThreatFire which does protect from buffer overflows (not sure what kinds though), and i'm wondering if i'd see any benefit of using CMF along it?


	Logged

Melih

CEO - Comodo
Administrator
Comodo's Hero

Offline

Posts: 12913

Re: Do i need CMF if i'm using ThreatFire ?

« Reply #1 on: December 30, 2007, 02:09:33 PM »

Quote from: RejZoR on December 30, 2007, 02:04:55 PM

WHat title says. I'm using ThreatFire which does protect from buffer overflows (not sure what kinds though), and i'm wondering if i'd see any benefit of using CMF along it?

hi RejZoR

You can go ahead and run the test ( http://forums.comodo.com/comodo_memory_firewall_beta_corner/buffer_overflow_testing_application-t12541.0.html;msg88339#msg88339 )we have for BO to see which ones threatcast catch. If it passes all 3 tests we have, then its ok, if not then you have to use CMF.

thanks
Melih


« Last Edit: December 30, 2007, 02:11:09 PM by Melih »	Logged

Who is Melih? What is he trying to do? -- Follow me on Twitter

RejZoR

Comodo's Hero

Offline

Posts: 1045

Re: Do i need CMF if i'm using ThreatFire ?

« Reply #2 on: December 30, 2007, 02:13:55 PM »

I just tried and it didn't. Not sure if ThreatFire works the same way but i proved the point to some degree by doing this test. Btw, was problem with CMF killing Vista activation data solved?
Last time i tried it (the interface looked totally different) it killed my Vista license (i had to re-activate it).
Any info regarding this as i have no intention of activating again just because of this...


	Logged

Melih

CEO - Comodo
Administrator
Comodo's Hero

Offline

Posts: 12913

Re: Do i need CMF if i'm using ThreatFire ?

« Reply #3 on: December 30, 2007, 09:38:31 PM »

that means a possible vulnerability could be exploited in your machine using BO and code could be executed. I would strongly recommend CMF. The current seems to be a fairly stable one. However if you feel more comfortable, you can wait for the final version should be out soon.
thanks
Melih


	Logged

Who is Melih? What is he trying to do? -- Follow me on Twitter

Josh123

Guest

Re: Do i need CMF if i'm using ThreatFire ?

« Reply #4 on: December 31, 2007, 12:25:02 AM »

Quote from: Melih on December 30, 2007, 09:38:31 PM

Final Version? Out Soon!!

Excellent!

Josh.


	Logged

Tyler Durden

Comodo Loves me

Offline

Posts: 164

Re: Do i need CMF if i'm using ThreatFire ?

« Reply #5 on: December 31, 2007, 08:03:45 AM »

I've digged ThreatFire... It tries to do the same as CMF but in some strange way (VirtualQuery... though I don't fully understand what they 're doin' and for, the code seems to be "strange"). Their method doesn't work anyway. I see they 've got improvements againts last version of "firepack" (very popular exploits package), but it's pretty useless (wrong). And, again, their hookin' method isn't correct (crashes if there're some hooks allready, e.g. CMF's). I've bothered to send bugreports about such issues (e.g. Sandboxie's author do not believe in my reports at all)