Author Topic: Protection against MITM attacks ("man in the middle")  (Read 564 times)

Offline NDABBRU

  • Comodo's Hero
  • *****
  • Posts: 642
Protection against MITM attacks ("man in the middle")
« on: July 30, 2021, 04:46:20 AM »
Hello,
Can you confirm that to protect against MITM attacks with CIS it is important to activate the "anti ARP spoofing" function in the firewall settings?
In previous versions this enabling slowed my internet connection, while now it seems that it does not slow it down (until now).
Furthermore, is it also useful to install Internet Security Essential (if it also protects browsing with Chrome)?

Thank you. :)
Bye!
Nunzio

Offline jay2007tech

  • Malware Research Group
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2319
Re: Protection against MITM attacks ("man in the middle")
« Reply #1 on: July 30, 2021, 12:50:40 PM »
Quote
it is important to activate the "anti ARP spoofing" function in the firewall settings?
Only you can define what is important enough to use.  Some turn it on, some dont.   

"anti-arp spoofing" Its mostly for LAN networks ,  If your running issues with your LAN, I would recommend filling out a bug report or just disabling it  to see if it works.  Its not a big deal, but nice to have in most cases.  You wont lose any sleep if its disabled  ARP Poisioning isnt common.  There may be a very small chance it'll interfere with your printer and I've only seen that once in my lifetime.  Also blocking "ip fragments" setting could be a issue for the printer too but thats a totally different setting 

Quote
Furthermore, is it also useful to install Internet Security Essential (if it also protects browsing with Chrome)?
Again only you can decide if its usefull or not.  If you run into issues that affects your machine either disable it or file a bug report so it can work fine on your machine.  Some turn it on and others its off.

Regardless of what you do, if you disable both of them.  Dont lose any sleep over it.  The firewall, autosandbox and/or hips, viruscope will have you covered.
It's hard being a crooked Admin when the files won't pass an md5checksum test.  But like any other good crooked Admin it can be done, it just takes time(and lots of it) and a few aspirins

Offline CISfan

  • Comodo's Hero
  • *****
  • Posts: 1889
Re: Protection against MITM attacks ("man in the middle")
« Reply #2 on: July 30, 2021, 03:09:14 PM »
Only you can define what is important enough to use.  Some turn it on, some dont.   

Well said, that's applicable for every setting.  :)

Offline NDABBRU

  • Comodo's Hero
  • *****
  • Posts: 642
Re: Protection against MITM attacks ("man in the middle")
« Reply #3 on: July 30, 2021, 04:03:44 PM »
Ok thanks!  ;)
Bye!
Nunzio

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek