Comodo Anti-ViruSpyware Wishlist v2 [CLOSED]

[Guest]

[ganda]

this is not really important, can CAVS email scanner "sign/stamp" the email sent by its user? maybe like, "this email has been scanned by comodo" ?

[oOeagleOo]

I would like to have.

Script Blocker
Network Shield
Web Shield

[AnotherOne]

I have been thinking that it would be nice to have the CAVS software make copies of the FAT, MBR, Boot Sector, kernel files, Start>Startup folder, Hosts file, and registry on request.  That way it could have the option of booting from a CD and restoring the most recent safe copies of those records prior to disinfecting the system.  If those items are restored first, it basically eliminates the startup methods of malware (I may have missed a couple - feel free to add other autostart records).  Saving copies of those files to a USB drive or SD card would allow daily backups and you could have a simple way of deactivating the baddies even without removing them.  Also, on the assumption that some hacker finds a way of writing files without CFP recording them, it would be good to have a listing of the files on the disk with file size and other physical characteristics of the file backed up.  New files could then receive extra attention.

[Little Mac]

Only problem with that, is that this copy needs to be auto-updated any time you make any change on the system (which would include the malware, too...).  If it wasn't updated current, any changes you made (new documents, etc) would be inaccessible, as the MFT (ie, the FAT on NTFS) wouldn't know where the files were located any longer...

LM

[AnotherOne]

True, the FAT would have to be backed up on the hard drive.  You could have it automatically save to a SD card or whatever on shutdown - if you don't see evidence of infection.  Also, unless you do a defrag, you would only lose the FAT references to new files.  That's better than having to reformat.

[BENthesoundman]

there needs to be a ton of integration done on both HIPS (for windows components and interactions) and your other products. ie. firewall, BOclean, ect...  I would also like to see some cooperation between the firewall, defense+, and HIPS. It is very annoying to have to approve the same program three or more times. Oh ya, a central program to manage all programs would really really rock!

[panic]

Hey Benny,

First post and you've hit several nails on the head. 

There will be a far greater degree of co-operation between the different Comodo applications. Each will leverage functionality off each other. This should keep overall application size down, restrict resource usage and enhance the overall security of the PC. They will remain separate applications but will be cognizant of and interact with each other.

A centralized management tool is coming. Have a look  at http://forums.comodo.com/help_for_v2/guiflow_help_for_creating_easiest_to_use_central_management_for_cpf-t587.0.html

The whole concept grew out of a bit of "wouldn't it be nice if...." brain storming between users with a few interested Comodo onlookers. The Comodo staffers liked what they saw happening, put in a few encouraging nudges and winks and said "talk more - tell us how you want it".

Whether they end up issuing anything like our collective ramblings or not, they have publicly stated that there will be a centralised management tool, and all Comodo users have played their part.

Hang around Ben and *** watch this space *** it will all come toghether. When is the question, and unfortunately I don't have an answer. The timeline used in the development of a single application is notoriously elastic. Comodo are building not just a series of application, but a unique security/trust platform that is manageable by users, not by a third party(*cough* DRM).

Patience, grasshopper, patience.

Ewen :-)

[BENthesoundman]

I have read that our next A/V scanner still, will not support SSL email scanning. Is it that hard to implement?

If I'm a big enough user to need or want all the features Comodo has to offer, wouldn't this be seen as VERY IMPORTANT?
 

Will I have to wait until V3 for this to get on the table?

[panic]

P  A  T  I  E  N  C  E

A

T

I

E

N

C

E

Up, down or sideways, it's still the same. It will happen, just not necessarily on your or my timeline.

Ewen :-)

[OD]

This is the primary thing keeping me from changing to CAVS also

I have read that our next A/V scanner still, will not support SSL email scanning. Is it that hard to implement?

If I'm a big enough user to need or want all the features Comodo has to offer, wouldn't this be seen as VERY IMPORTANT?
 

Will I have to wait until V3 for this to get on the table?

[MJ1988]

They need to fix HIPS in 2.0. Instead of having that fixed on the final release. The final release is taking very long to be released, and people using CAVS2 in the mean time are at risk of a virus, or other problems.

[presario]

Howdy,
Man Its been a long time.

Anyway, I would like to see the entire application be more like ESET's NOD32. The features I am pointing at are the small memory footprint, and a heuristics scanner that is simmilar to theirs, where it creates a virtural machine to run the questionable program, and flags it if it does anything bad. However, i would like the ability to tell it what the progam needs to do before it is flagged, such as overwrite the MBR, or tinker with ntoskrnl.exe.

The big one is streamlined code so that the AV has a small memory footprint (something like the 25 MB that CPF 3.0 uses) when it has its on-access scanner enabled, and a maximum of 50 MB when it is running an on-demand scan.

these would be nice to see implimented.

Adam

PS: it would also be nice to have the same process protection that CPF has (you cant kill it unless the system is shutting down).

[dw2108]

An ability to integrate CAVS with ClamWin? Right now I'm having to use that goofy WinPooch to do integrate Clam and CAVS.

Dave

[steadyguy]

Hi Ewen,
            when you say Patience did you mean Timeline or Lifetime. There are some of us who are ageing rapidly waiting.
                 steadyguy.

[panic]

Soon, steadyguy, soon. 

[Tags:]