As you might already know I have been trying to make CIS 5 work in my PC without any good results even though CIS 3 and 4 worked nicely in the past.
I am having trouble with a few files being sandboxed that I believed are the cause of my machine hanging when cold boot (first time of the day).
I have read the CIS 5 manual and your FAQs, and I thank you for them; However, I have a few questions, may be because English is not my native language or I am too old to learn, but I do not get it.
The Trusted Files and Trusted Applications policies are quite similar, however there are important differences:
•A Trusted File is not automatically sandboxed. A trusted file will be sandboxed unless it is also a safe file
When I add a file to the "Trusted Files", it does not become a safe file? When it become a safe file? when Comodo adds it to its white list?
•Trusted Files can run Trusted Files, trusted applications cannot run trusted files or applications
Here you lost me. I know trusted files are the files in Defence+ > Trusted Files and Trusted Applications are the files in Defence+ > Computer Security Policy > Defence+ Rules, given Trusted Predefined Policy, so If I have HPqdirec.exe in trusted applications and it runs Hpqtra08.exe, which is in Trusted files, HPqtra08.exe will not run at all or will not run as a trusted file?
•The predefined policy for Trusted Applications can be changed in 'Predefined Policies' that for Trusted Files cannot.
Ok I got this one. No problem.
•Files can be given Trusted File status when if they are declared safe when looked up on the cloud safe list. They cannot be made Trusted Applications
So a trusted file can not be removed from "Trusted Files" and add to "Defence+ Rules" and given a Trusted Application rule, but you said here in # 5 to remove any trusted files in the Trusted File list and to add it to D+ Rules with and Installer/Updater Predefined rule: http://forums.comodo.com/defense-sandbox-faq-cis/app-is-not-working-correctly-but-does-not-seem-to-be-sandboxed-what-to-do-t61684.0.html;msg434597#msg434597
or is it different with Installer/Updater rules?
•Signed files from Trusted Vendors are regarded as Trusted Files not Trusted Applications
OK I got this one too.
•Trusted Files by default are allowed outbound access to the internet, Trusted Applications are not (unless also made trusted using firewall settings).
and this one no problem.
Sorry to be a bother, but I am desperate for CIS 5 to work in my PC and I am trying to understand what is going on, and I thank you before hand.
I forgot. Is it better to let the files sandboxed and let Comodo to make them safe? or I can add the files to the Trusted files myself? However if I do this, the files are not declared safe until Comodo says so. According to what you said in point # 4 above.