Leak Test Results

[Guest]

[John Buchanan]

CleanPC is a Defense+ only mode, Proactive is an overall systems settings mode..  All settings Proactive sets can be made while Defense+ is still set to CleanPC mode.

[Vettetech]

I have mine in Clean PC mode and I don't have a single pending file. Only when Avira updates do a find the update files being added to "My Pending Files". But, anyone will know for certain that those files are Avira's, so not a problem. At least, you won't have the pop-ups for the pending files, which won't affect the level of protection. It would be much easier to review those files whenever you want, and if considered malicious, be discarded. You'll get alerts for every new file coming into the PC. I don't think Clean PC Mode is weaker than "proactive configuration".

Install something new. Then you will have pending files.

[metalforlife]

Ah, didn't know that. But I don't understand, except for "Monitor Settings" everything else CIS protects, is protected out-of-the-box. All that has to be done is tick all the settings in "Monitor Settings. That should be equivalent to proactive protection, right?

[metalforlife]

Install something new. Then you will have pending files.

The average frequency with which files will be added to My Pending Files will always be lesser than the frequency with which you have to answer pop-ups in "Safe Mode" and "Paranoid Mode". You might mess-up big time while answering a pop-up. Chances of messing up "pending" files would be lesser.
The thing about Clean PC mode is that it is easier to figure out would know what is malicious and what is not. All the accesses not initiated by the user will be blocked.
- Every file on your system will be safe - No pop-ups
- Every file the user introduces to the PC will be added to My Pending Files - Again, no pop-ups. If the user knows for certain that files are safe, he will remove them from the list. If he is not sure, then he will submit them to COMODO and scan them with the anti-virus. If the anti-virus detects anything he will delete the files.

Much simpler than going through the pop-up mania in Paranoid Mode.

[Vettetech]

You do not get pending files in Safe Mode or Paranoid Mode. I actually hate pending files so I have D+ in Safe Mode.

[Endymion]

  ATM I use D+ safemode although I like pending files wheras I used it to easily submit new unknown files to Comodo to help them update the Safelist of upcoming versions or eventually submit and confirm if a new unknown application I allowed was later confirmed as Safe by Comodo analysts.

IMHO Manual submission and lookup for multiple files in non CleanPC modes is a bit awkward at least.

[John Buchanan]

Ah, didn't know that. But I don't understand, except for "Monitor Settings" everything else CIS protects, is protected out-of-the-box. All that has to be done is tick all the settings in "Monitor Settings. That should be equivalent to proactive protection, right?

yes.

Also, I always make sure of the following as well:
Make sure 'Block all unknown requests if the application is closed' is checked
Image execution is at 'Normal'
Files to check, I always add File groups/Executables.

[metalforlife]

yes.

Also, I always make sure of the following as well:
Make sure 'Block all unknown requests if the application is closed' is checked
Image execution is at 'Normal'
Files to check, I always add File groups/Executables.

I have unticked 'Block all unknown requests if the application is closed'. I don't consider it essential. I never shutdown the GUI, I don't think anyone would. If ever, somehow, cfp.exe crashes and refuses to restart I will reboot my PC.

Image Execution Settings is normal. Manually-added-list of executables.

 

[John Buchanan]

As you said, extra safety.  Just in case the CIS GUI stops running (it has on a few occasions),  I don't need to worry about a new application running rougue.

[priito]

Why cant I get 340 (the maximum) protection with CLT.exe? I get 70/340 all the time. I modified my settings with the help section - CIS maximum protection settings. Where would I search the problem.. the leaks? 

[John Buchanan]

[at] priito:
What exactly are your settings?
I use proactive, Firewall and Defense+ both on Safe mode.
Defense+ settings:  'Block all unknown requests if the application is closed' is checked.

[priito]

I did it all from the beginning- installed the new version of Comodo Firewall. Now I got 340/340 
Made my day.
I have small question for you: is it safe when i let Windows Messenger (MSN) thru the firewall. Should I allow it to use only outgoing connection or is it safe if i allow both- in and out? What settings would be the best solution for the msn? 

Anyways- Comodo rocks

[John Buchanan]

I have MS listed as a Trusted Software vendor.  I am also behind a router.  MSN Messenger is set as Trusted on mine (as I just looked it up).  You could remove the firewall entry and restart Messenger, and only allow the communications it requests (making it Custom).

[Rambaldi]

COMODO Leaktests v.1.1.0.3
Windows XP SP3 build 2600
CIS 3.9.95478.509  (No CAV)
FW Safe Mode
D+ Clean PC Mode

Score 340/340

[antbates1991]

310/340
Not bad at all since I'm only using AV+D and Windows Firewall (Comodo Firewall Crashes Up My Printer https://forums.comodo.com/firewall_bugs/comodo_locks_up_dell_printer_in_353839_cis_versions-t39105.0.html)

Windows Vista HP 32Bit
D+ Set to Proactive
 

[Tags:]