Agreed.
yro: Your post has been split & moved here. Let’s not see any more of that thank you.
What you described is a problem in the program itself, not in the UI. If protection from that piece of malware Is not delivered by the default settings of CIS, then changes are in order for the suite and not for the UI.
You would be the first who claims that its a step backward to have to answer firewall rules if they would protect you from this 
And therefor its usefull to have everything at its place in the UI.
In many ways you dont like default deny.
And in many of your ideas is detection a basic element.
“I would be a joker if i said now:
What if you were from another company posting your like while laughing your way to the bank?”
Where did I say anything like that? Having to answer a firewall alert for an unknown thing is okay but the default settings should be that even that would not be necessary. As far as default deny goes, CIS is now only selectively default deny and follows that approach far less universally than ever before and I consider that a huge step forward. What I don’t like is the concept of default deny being applied to safe things like happened far too much in the past versions.
Once again though, needed adjustments to the default configuration of CIS by the developers really don’t have anything to do with the UI.
Ok, then stop to advertise this UI. Speak about re-introducing of “detection, black list, white list, 90% default allow”.
If machines programs would be able to do what you want them to do, doing automatic a perfect job, you soon would not have to go to the cinema to see terminator.
Because such a self running function is requiring conciousness/plan.
Your suggested world of security programs has to react to threats again. New signed trojan? Rewrite the programs lists!
Its so to say the opposite of what comodo stood for.
Before its safe again, many people would have a problem. And the cloud would gather.
Its then an advanced version of a classic antivirus (like others). Nothing else!
What you call steps forward, are steps backward. Just the convenience “looks” better to your approach.
With version 3 i would have been safe against this trojan.
With version 6 default you might lose your money.
Step backward.
Why do you think that you would be the best suggestor for the UI?
I dont get why someone who tends to not use UI is thinking, he would have the idea. And that the people who use it are wanting too much.
Something that gets harder to be explained is losing usability!
All began with “userfriendlyness”:
“With the new version of OS you can easily share and participate in networks. All is easy! You can run anything without problems! You can get help from your friends because they can connect to your desktop to solve problems for you, as if they sit on your chair!”
THIS USERFRIENDLYNESS MADE SECURITY PROGRAMS NECESSARY!
Now you want security to become like that OS.
Tomorrow you have to install a security program to secure the userfriendlyness of a security program that attempted to secure the userfriendlyness of an OS.
A never ending circle.
As a compromise I think what CIS should become is default full-isolation. I think that by default all apps should be run in the FV sandbox, but without that troublesome automatically allow firewall rule. Thus, most apps would be able to run without exposing the computer to infection.
You are totally missing the point and going off on wild tangents that not only don’t apply but weren’t said nor implied. The simple fact is that an infection from that piece of malware has NOTHING TO DO WITH THE UI but rather with the default settings of CIS which apparently aren’t strong enough. The default settings of CIS , or of any ither program for that matter, could be applied with no UI of any kind even being present. The UI only exists for you to see the settings and make changes as you see fit.
Once again , the infection is not due to any flaw in the UI. Any discussion of default deny (which I support for unknown things) vs. other approaches is totally irrelevant to this topic.
Having an usable interface is protecting against threats which might slip through auto allow. Simple that.
Even IF your attempt is functioning one day to a high grade, it is teaching the wrong:
“When the rules on the roads are good enough, you can walk with closed eyes.”
Looking on what people trust in>make conclusions>program a malicious file>profit.
There are too many weak spots, opened by userfriendlyness. Like i said, this is how it all started.
With a “bad” interface this all becomes more worse.
I think/know Comodo (what ever version) is by-far the best internet security software around! Melih is an amazing guy with great visions for the future…
You are very kind. thank you!
You are the one who can technically handle HIPS alerts. But many people cannot. So while you said trojan can be prevented in V3 but not in V6. That could be true in your case. However, many general users may just clicking allow (as reflect action) or avoid using V3. Therefore, many people’s machine still cannot be protected by V3 and get infected because of non-userfriendlyness.
I did stop using V3 until userfriedlyness improved in subsequent versions. I also start install CIS in my family member’s PC since V5. I think they are better protected by CIS than traditional antivirus alone. Without the userfriendlyness improvement, I would not install the program on their machines.
Hence, with improvement in userfriedlyness, actually more people can be benefit from the protection of CIS.
Maybe yes. But the Problem is the same. Cause it is only that they want be uneducated. They want surfing in the internet, they want sending emails, they want install new programs, they want play online games… but they wont learn how CIS works. every Program is so long non-userfriendly as long they wont learn and understand how it works. Its their own problem.
Maybe right now, with V6 more people can use CIS, but the truth is they still dont know how to use it.
Yes, some people just won’t pay any effort or unable to learn.
Some will pay more effort to learn and some will pay less effort to learn. With less effort required, I believe more people are willing to learn and able to use CIS.
What I think for the major problems right now in V6 is that the UI is make for novice who don’t use the UI. On the other hand, the UI is difficult for advance users who really use it.
I read an article today about Windows 8 and why it is being adopted even slower than Vista was. In the article it is stated that IT pros know that only 10% of computer users are really interested in learning how to use things while the other 90% just want things to work out of the box. I think that’s an accurate assessment and would apply to new users coming to CIS for the first time. In case you want to read it, here’s a link.
http://www.zdnet.com/will-90-percent-of-users-always-hate-windows-8-7000012348/?s_cid=e539
Version 3 was just the example.
I am not the only one who can handle alerts. I just use a hips like a switch for the light.
“Should this bulb glow?” Yes= Allow one general question
So only bulbs are glowing which i allow to do so, with one answer.
Just easy, and safe, and simple.
People are afraid of what they dont know. And just because there are so called “experts”, they believe they must be an expert to do things on their own.
When comodo annoyed me, i made the setting.
When the sandbox annoyed me, i disabled it permanent.
Or people are fed. After every two years a new awesome product which you absolutely need to buy just because its there.
Or people are happy with what they have.
Or people like linux.
Or people dont have money.
Or people just dont care how the marketing wants them to jump.
“IT pros” naturally love it to be like that. Or they wouldnt have a job. They dont tell you how easy it is.
I don’t mean you are the only one, but you can represent those user group who are technical enough to handle alerts.
You just over simplify the case. It is not just click “yes” and as simple as " switch on bulb glow". The information in the alerts must be read to decide if it is safe to click “yes”. It is not as easy as you said to made the decision. What is the “COM” interface? Is it safe to allow process A to access process B? Is it safe to allow modifications of file X? What’s the points I get alerts from running programs and just click “yes” every times for HIPS alerts. Telling your way to novice users to click “yes” without investigating content in alerts will just void the use of HIPS. Then, there is no point to use HIPS. And I think novice users are much much more better protected by current BB than your way of using HIPS.
It is the responsibility CIS to facilitate the minimum level of competency required for the minimum acceptable level of security.
CIS is a huge ecosystem of various elements, not all of which require user attention or education in order to function appropriately. Should there eventually be something that requires troubleshooting, there’s GeekBuddy, or Geek Squad, or your local pc repair shop.
The article that Dch48 linked to, expresses the role of the user very well. It should not be imperative, morally or functionally, to learn the ins and outs of CIS in order to be able to safely surf the internet. As an example, if CIS can do its job without the user having to learn what the TVL is, then it aught to.
We all probably draw the line different places, but I thought it should be said that an unwillingness to learn is not necessarily a fault, and can be a fair reaction to inadequate design.
I got it as a general “you”
Ok, now i can see your problem. You think you have to understand each question for each program.
Its not me who makes it too simple, its you who makes it too complicated!
You have to ask yourself ONE question first:
Do i want this program to run, or is it a virus/i dont know?
If you want it to run, you choose: Treat as (game/own rule) or trusted.
If you dont want something to run, you are protected nearly perfect without any interaction.
This reduces the danger of antivirus lacks to a minimum of required “information” (=trusted source). 99,5% of the time you do not have to care about infection.
You just need trusted sources to load fine software for use.
And you are safe with answering one question!
For doubtfull things, use a virtual sandbox. Avoid doubtfull things though.
I used paranoid mode for long. Do you think i answered 1,000.000.000 questions to run my computer?
No.
But i COULD have 1,000.000.000 POINTS to notice something that tries to gain access!
If i want!
Its a tool with buttons. You can make it your tool.
Really, like a switch. On/off.
Even in paranoid mode.
It removes the un-necessary worry, and gives control.
A hips can not protect you if you are introducing a virus if you thought its a game.
While silent userfriendlyness might allow a virus to run and even to phone home, if you also dont want to answer firewall questions.
One answer is enough again, for desired connections: Treat as outgoing only (TCP+UDP outgoing).
And you are safe from unwanted traffic.
This text is too long for the few steps.
Its just necessary to emphasize 
If people worry, “i dont know what traffic to allow, does my computer work without allowing all?”
“Imagine, your computer wasnt connected to the internet. Did it run? You just need to allow what YOU initiate!”
Or, " i dont know if its safe to allow my new original game to use com interface or this or that, i dont want to see questions about things that i dont understand, i want to play my game! But can i just allow my game as trusted, isnt that unsafe???"
“Imagine you wouldnt have comodo installed. Would you play the game, or worry what “exotic” files it will launch?”
-If you are not good in hitting a ball with a wood to get it into an target, just throw the ■■■■ ball itself!-
You dont have to learn each name of each animal of each tree to know what you can call a forrest.
I allways said: Its more important to show how easy it is, than to invent a load of userfriendlyness to fix this lack of showing.
Like a “treat as GAME” rule. Playing a game? Press game! So simple.
But instead you got a game mode button, that puts the hole machine into open and learning. More worse than disabled!
I dont get that
+100