How would you rate COMODO Internet Security? and what to improve? [CLOSED]

[Guest]

[Yaraslau]

Next time I will try to save page with reply on mobile. As evidence. Or try to visit Comodo's forum more often.

P.S. unfortunately, this forum eats a lot of traffic. 

[gkweb]

Hello,

CIS is nice but the following could be improved :
- An application marked as trusted in either D+ or Firewall is not in the other. All of my trusted applications are trusted in both firewall and D+ (double work), it would be nice that either marking as trusted put them in both D+ and Firewall trusted area, or that a new option such as "super trusted" was available.
- However, a trusted "Firewall" application, if it binds and listens to one port, will inconditionaly accept any connections to it, breaking the potential "invisible" status the user might want. May be a warning should be prompted at least one time
- D+ Computer Security Policy (might be renamed to Application Rules ??) cannot be sorted by group, e.g. : Trusted first, Windows/System, Installer, Custom, Blocked. Also "Purge" button sounds like it will empty the list, but thanksfully the help file explains it well. May be renamming it as "Check & Purge Dead Files".
- In the Summary window, it would be nice to be customizable. Indeed I don't care about "Highlights" and "Tip of the Day", whereas "Traffic" is very interesting. May be allowing the user to disable the display of the aformentioned area, and replace them with something more usefull.
- When CIS is in installation mode, we can forget it and the taskbar icon is still the same as usual. It shouldn't. Fortunately a popup appears from time to time as a reminder, but it is not enough.
- GUI could be improved. Easy to say of course, hard to do given all of the available options, but still, some options are not easy to find on the current GUI.
- When an application receives an incomming connection, althought the popup is in red there is no visual prints showing clearly that it is an Inbound connection, apart of reading the description. An inbound row icon would be nice here with an exclamation mark.
- About Stealth Ports : doing Nmap commands show the computer visible by default, althought no trusted network are declared, and all ports are found filtered (also the options Protect the ARP cache and Block Gratuitous ARP frames were enabled). Nmap 4.11 does that on the same LAN using an ARP scan. Granted, it would not work over the Internet, but that can still be of a concern for some people.


Overall CIS is a very advanced and powerfull application, but there is always rooms for improvment

Regards,
gkweb.



 

[JNavas]

Next time I will try to save page with reply on mobile. As evidence. Or try to visit Comodo's forum more often.
P.S. unfortunately, this forum eats a lot of traffic. 

That's not my experience. All my posts are still here. A couple got moved to a more appropriate forum. Perhaps that's what you encountered.

John

[JNavas]

[SNIP]

Hi gkweb.

Nicely done. My comments (for what they are worth):

• Agree completely CIS needs a global Trusted ("super trusted") policy, and have entered a Wish that you might want to vote for.
• A warning on opening a port isn't a bad idea, but there's little or no real value to being "invisible" in my opinion -- bad guys worth worrying about don't just attack visible targets, they attack any IP address.
• Agree completely the Purge button should be clearer -- I suggest "Check for dead entries" that pops up a window of dead entries found with an active "Purge" button on that window if the list is not empty.
• Agree completely that customizable Summary screen would be very nice. My own screen would be much different that what I would configure for non-technical clients.
• Agree completely the System Tray icon should clearly display Installation Mode status and/or that a reminder window should always be active. It's currently too easy to forget for a period of time.
• Agree completely the GUI needs improvement. Help should be on all screens. More logical layout. Less clumsy; e.g., tabs or Explorer-type list selection, not buttons.
• I don't really understand your comments about inbound connections. Screen shot(s) and/or mockup(s) might be helpful.
• Again, I don't think "invisible" is of any real value. Worse, it can breed a false sense of security.

Agree completely CIS is very advanced and powerful. I've started to use it for my clients, and it's going quite well. Note to COMODO: I expect many of them to upgrade to PRO, live help being the decisive incentive.

John

[gkweb]

Hi Jnavas,

Thanks for your comments, I will try to add more examples, see below

I don't really understand your comments about inbound connections. Screen shot(s) and/or mockup(s) might be helpful.

I have attached 4 screenshots :
- 2 screenshots showing the current inbound and outbound popups (current_inbound.jpg and current_outbound.jpg)
- 2 screenshots showing two suggested improvements (better_inbound.jpg and better_outbound.jpg)

I hope you better understand what I mean. There is currently no obvious visual differences between inbound and outbound popups.

Regards,
gkweb.

[JNavas]

I have attached 4 screenshots :
- 2 screenshots showing the current inbound and outbound popups (current_inbound.jpg and current_outbound.jpg)
- 2 screenshots showing two suggested improvements (better_inbound.jpg and better_outbound.jpg)
I hope you better understand what I mean. There is currently no obvious visual differences between inbound and outbound popups.

Thanks! Good suggestion -- I agree.

John

[.FaZio93.]

Thanks! Good suggestion -- I agree.

John

I like that too. +1 

[PhyxionNL]

After using CIS for a while now, I'm very happy with it, except one thing, the Installation Mode for Defense+. Not only is it annoying but also not functioning very well.
I don't understand why it's working this way, let me make some things clear.
It first asks you if you really want to change to install mode. I timed it a bit and a Defense+ popup is coming every 1 minute or so asking you to change to normal mode again.
First of all, 1 minute is too less. When installing big program's it's very annoying that everytime you click NO it's still 1 minute, why not extend it with a minute everytime then?
But better, a small example;
I run an installer. It does something Defense+ should take care of, a popup comes what to do. I select Installer or Updater. Then there is NO need at all to ask if you really want to be in Installation Mode, because I just selected it . It should be VERY easy for Comodo to detect if a program actually has ended or not and then ask if you want to return to normal mode, if it's still running why on earth would I want it to return to normal mode.
And a manual option should be nice too to revert to normal mode.

[SputnikRU]

[at] PhyxionNL
Agreed, the installation mode is annoying and confusing. Hoping COMODO will work on this 

[.FaZio93.]

{snip}
I run an installer. It does something Defense+ should take care of, a popup comes what to do. I select Installer or Updater. Then there is NO need at all to ask if you really want to be in Installation Mode, because I just selected it . It should be VERY easy for Comodo to detect if a program actually has ended or not and then ask if you want to return to normal mode, if it's still running why on earth would I want it to return to normal mode.
And a manual option should be nice too to revert to normal mode.

I see and agree with your point.

But there is difference between choosing an application as "Installer and Updater" and "Installation Mode". Choosing an application as Installer and Updater will grant it the privileges needed, but if you don't switch to Installation Mode, you will get an alert for each child process from the updater. Some users may want to be in control of these child process and not switch to Installation Mode. But of course, I guess it would be convenient if  there was an option to always switch to Installation Mode when setting an app as Installer & Updater.

BTW, there is a manual option to toggle between Installation mode and your Previous mode.
(Under "Proactive Defense" on the right side of the Summary screen. "Switch to Installation( or Previous) mode.)

[JNavas]

I see and agree with your point.
But there is difference between choosing an application as "Installer and Updater" and "Installation Mode". Choosing an application as Installer and Updater will grant it the privileges needed, but if you don't switch to Installation Mode, you will get an alert for each child process from the updater. Some users may want to be in control of these child process and not switch to Installation Mode. But of course, I guess it would be convenient if  there was an option to always switch to Installation Mode when setting an app as Installer & Updater.
BTW, there is a manual option to toggle between Installation mode and your Previous mode.
(Under "Proactive Defense" on the right side of the Summary screen. "Switch to Installation( or Previous) mode.)

I agree that Installation mode is currently a confusing hassle, and these are good suggestions, but I think it would also be good to enter this as a Wish. I've got my own related Wish entered as "Add Install Mode as an item to System Tray icon". Please comment and vote there.

John

[SecurityManiac]

because of the firewall and defense+ I rated it 4
Only AV and ease of use need to be better.

[darcjrt]

When installation mode is active it should have a message window at the bottom right corner on the screen that last for the time installation mode is active like SPYWARE TERMINATOR does. That way you will know that you are on installation mode!

[Monkey_Boy=)]

5 for firewall (it stayed on top on leak tests a long time now)
5 for defense+ (you can configure it so much, i like that a lot)
5 for resource usage. (It feels light even on my older computer)
3 for AV. 

+ 1 point for it being free (and none crippled due to it being free).


My rating: 5. No doubt about it.. And what other Internet security offers buffer overflow protection (safe surf).
But the AV could needs some detection improvements. But its really a good suit compared to a lot out there.

Keep up the good work!  (R)

[devenroy]

I given 3 rating
firewall = 4
Antivirus = 3

Overall 3.5 so i given 3 instead of 4, i would like to request comodo to please make antivirus the best antivirus than even paid ones like kaspersky etc., Thanks for such a cool all in one internet security, and devoted dedication to make it BEST, i want to thanks entire comodo team and users for there brilliant contribution, 

[Tags:]