Author Topic: COMODO Internet Security 6.0?  (Read 575000 times)

Offline giulio

  • Comodo Member
  • **
  • Posts: 39
Re: version 6: BB vs Hips
« Reply #2340 on: September 25, 2012, 12:02:25 PM »
I was going by the three modules listed under the Defense+ dropdown menu in the GUI. (screenshot) File Rating is separate.

Yes, the shared space folder is not virtualized by default. So if you download something in a sandboxed browser and you want access to it from your physical machine, you can download it to the shared space folder.

Thankss!!!!
i will wait for testing beta... :D :D

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 701
  • Share the love
    • CFI
Re: version 6: BB vs Hips
« Reply #2341 on: September 25, 2012, 01:36:26 PM »
The BB isn't taking the place of the HIPS. It is just the module that is going to act first. If the file is known/trusted, the HIPS won't even come into play.

What does one do that the other cannot? The BB is able to automatically sandbox unknown applications, the HIPS isn't able to do this.


The BB module blocks an unknown file just because the file is unknown for Comodo (maybe it's a safe file) and not because the file has suspicious behavior. So behavior blocker in CIS6 as the Default Deny protection. So BB = DD, Right?
"Wisdom is the supreme part of happiness." (Sophocles)

Offline christarzan

  • Comodo's Hero
  • *****
  • Posts: 224
Re: COMODO Internet Security 6.0?
« Reply #2342 on: September 25, 2012, 04:27:37 PM »
Is there anything new with the Firewall? I hope it has not compatibility issues with Avast.

Offline HeffeD

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 6827
Re: version 6: BB vs Hips
« Reply #2343 on: September 25, 2012, 05:46:01 PM »
The BB module blocks an unknown file just because the file is unknown for Comodo (maybe it's a safe file) and not because the file has suspicious behavior. So behavior blocker in CIS6 as the Default Deny protection. So BB = DD, Right?

Currently it's not so much of a traditional behavior blocker. (Deciding whether or not an application is safe by monitoring what it is trying to do) That will come in a later release.

Offline RealNature

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1138
  • Nothing without God
Re: version 6: BB vs Hips
« Reply #2344 on: September 26, 2012, 02:26:36 AM »
Currently it's not so much of a traditional behavior blocker. (Deciding whether or not an application is safe by monitoring what it is trying to do) That will come in a later release.
Thx for that,good to know.  :-TU

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 701
  • Share the love
    • CFI
Re: version 6: BB vs Hips
« Reply #2345 on: September 26, 2012, 09:04:23 AM »
Currently it's not so much of a traditional behavior blocker. (Deciding whether or not an application is safe by monitoring what it is trying to do) That will come in a later release.

As we know already CIS5.X has a good malware heuristic analysis module, In fact, it is a behavior blocker -attached images- Anyway, I hope and I believe that it could be improved in Version 6.

Thanks HeffeD
"Wisdom is the supreme part of happiness." (Sophocles)

Offline spywar

  • Malware Research Group
  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 9512
  • BOT
Re: version 6: BB vs Hips
« Reply #2346 on: September 26, 2012, 10:43:54 AM »
As we know already CIS5.X has a good malware heuristic analysis module, In fact, it is a behavior blocker -attached images- Anyway, I hope and I believe that it could be improved in Version 6.

Thanks HeffeD
the "verdict" come from the lookup servers.

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 701
  • Share the love
    • CFI
Re: version 6: BB vs Hips
« Reply #2347 on: September 26, 2012, 12:06:18 PM »
the "verdict" come from the lookup servers.

Yes, But not only FLS. It comes from Cloud & AV & Local BB(Local Malware Heuristic Analysis).

If the file detected by Cloud (DB or Analysis). In this case "Verdict" shows "virus". image1
But if it detected by Local Malware Heuristic Analysis, In this case "Verdict" shows "Suspicious". image2

 
"Wisdom is the supreme part of happiness." (Sophocles)

Offline spywar

  • Malware Research Group
  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 9512
  • BOT
Re: version 6: BB vs Hips
« Reply #2348 on: September 26, 2012, 12:14:48 PM »
Yes, But not only FLS. It comes from Cloud & AV & Local BB(Local Malware Heuristic Analysis).

If the file detected by Cloud (DB or Analysis). In this case "Verdict" shows "virus". image1
But if it detected by Local Malware Heuristic Analysis, In this case "Verdict" shows "Suspicious". image2

 
Oh thanks my mistake.. Also it shows "suspicious" when a file is detected by CIMA right ?

Offline naren

  • Comodo's Hero
  • *****
  • Posts: 4376
Re: COMODO Internet Security 6.0?
« Reply #2349 on: September 26, 2012, 12:23:53 PM »
Is it possible in CIS 6 to have autosandbox enabled but elevated privilege sandbox allowed automatically? (not sandboxed automatically but allowed normally automatically)

The reason I am asking this coz autosandbox never gave any prob here i.e all the programs ran fine in autosandboxed.

Elevated privilege rights gave many probs here i.e installation/uninstallation prob. Thats the reason I removed CIS from my family system. Coz many programs dont install & uninstall properly sandboxed i.e half install/uninstall i.e craps. And it was very difficult to remove those corrupted install/uninstall as they gave error, missing file, etc.

This was also the complaint by users & testers that programs dont install/uninstall well in sandbox. And full virtualization was proposed & promised but now in the current situation it will not be there as per Devs.

So the prob still remains with version 6 I guess. Or is there any improvement/enhancement here I wonder?

« Last Edit: September 26, 2012, 12:26:49 PM by naren »

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 701
  • Share the love
    • CFI
Re: version 6: BB vs Hips
« Reply #2350 on: September 26, 2012, 01:11:44 PM »
Also it shows "suspicious" when a file is detected by CIMA right ?

No, It shows "virus".
Lookup servers in fact includes CIMA and Cloud Database (whitelist & blacklist in cloud). And also may soon valkyrie.

"Wisdom is the supreme part of happiness." (Sophocles)

Offline naren

  • Comodo's Hero
  • *****
  • Posts: 4376
Re: COMODO Internet Security 6.0?
« Reply #2351 on: September 26, 2012, 02:41:27 PM »
There is a hidden or internal whitelist by Comodo in version 5. The programs in this whitelist doesn't appear in Trusted Lists. Now how would a user know if an X program was found in the internal whitelist or it bypassed Comodo security?

Is this the same in version 6?

Offline Dragma

  • Comodo Member
  • **
  • Posts: 27
Re: COMODO Internet Security 6.0?
« Reply #2352 on: September 26, 2012, 03:39:06 PM »
anybody has comodo beta 6.0 send it to me
Republic Of Kosovo

Offline giulio

  • Comodo Member
  • **
  • Posts: 39
Re: COMODO Internet Security 6.0?
« Reply #2353 on: September 26, 2012, 03:41:38 PM »
anybody has comodo beta 6.0 send it to me

?????

we are waiting all CIS 6 beta.... :D :D

Offline RealNature

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1138
  • Nothing without God
Re: COMODO Internet Security 6.0?
« Reply #2354 on: September 26, 2012, 03:50:08 PM »
anybody has comodo beta 6.0 send it to me
(:LGH)

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek