@ilgaz
Why does your certificate authority take so long to correct its mistake?
6 Likes
I applied for a MasterCard just so I could finally subscribe to Comodo without any difficult detours. But now Iām waiting until the problem is solved. The sooner you solve the problem, the sooner youāll have me as a subscriber. 
Work should be worthwhile and rewarded. Iāve been using Comodo for long enough now as a satisfied and well-protected user.
I wonder how frustrating it must be for someone who just got to know Comodo, happily downloads the antivirus, and then comes across this certificate problem.
Many new users donāt know what it is.
Itās time for COMODO to speed up this fix, since the certification body was the one who did this problem.
This problem has been reported for two weeks now.
It started being reported on 09/12/2024.
I believe it happened much earlier.
They said it would take 1 to 2 weeks, but this limit has already been passed.
Comodo team, speed up this process as quickly as possible.
Take better care of your customers, especially those who are just arriving.
2 Likes
Yes, we who use it know that even with the revoked certificate we are protected.
Now what about new users who are arriving?
They want to install Comodo but canāt, what happens to these people?
3 Likes
Thatās the real question, honestly.
I mean, that it happened in the first place is bad but excusable, even if it should never happen. Thereās people working there, after all, and people make mistakes.
But that it takes this long to correct this mistake, to issue new certificates and software with those new certificates isā¦ odd.
3 Likes
i will bet the fix will not come in less then 2 or 3 months
2 Likes
Donāt tell me something like that, Iām scared.
The moderators and the community team here on the forum informed me that it will be released in 1 to 2 weeks.
But weāre already entering the 4th week, and so far nothing has been done, Iām almost believing you.
1 Like
Hi New_Style_xd,
I hate to say but we are at day 9 since ilgaz stated 1 - 2 weeks which by my reckoning is another 5 days to go and not the ā4weeks agoā you state - that is when it first happened and not how long ago it was said that the fix would be out.
If you have any concerns go back to 8012 ( which on many occasions you have said is installed on most of your clients machines ) and as Cruelsister says works without problems and is the version she actually has installed.
I have Comodo 2025 installed on a couple of machines and have had no concerns with them not being safe or protected and one machine I have setup for a new client, I put 8012 on there as I know it will protect the machine until the new version is released.
4 Likes
I wanted to try CIS 2025 and kept getting bunch of errors during install about signatures just to land here and find out this has been broken for weeks. WEEKS. What the hell is Comodo doing? What the hell are they doing fixing the signatures with whatever authority issued/revoked them? Have they gone to fetch them from f**king Mars or something? This shouldnāt take more than 1 week day, but Iād allow it up to 3 days. Not 2 weeks and counting. The hell?!
3 Likes
It takes time for the certificate authority to issue a new certificate and this is usually done at the start of the month. Your still protected despite the warnings. Iām guessing it will be early this week but you can always install .8012 in the interim: CIS/CF .8012 Topic
Weāre waiting on update from the Devs @ilgaz for an ETA of the certificate fix.
3 Likes
Iāll never give up my custom configuration.
Iāve put it in place over the years.
For me, Comodo CIS without custom configuration is no Comodo CIS at all.
For the moment, all this is shaky and does not ensure, despite what Iāve read, full and confident security.
Iād rather wait for the patch in 15 days
2 Likes
There seems to be another problem now, and I donāt know if itās related to the certificate problemā¦ KillSwitch is declared āpositiveā by many antivirus programs on virustotal.comā¦
Can someone give it a try?
1 Like
Negative: click on my link and youāll see that itās positive for 11 antiviruses, including some very well-known ones.
You can also see in the ādetailsā tab that Comodo products have certificates signed by Comodo itself, as well as by its spin-off, Sectigo.
Thatās what makes this Certificate story all the more disturbing, because Certificates are something Comodo knows a thing or two about!
1 Like
I uploaded cce, is killswitch included as part of the program? If not, then that could be the cause.
It seems so. Killswitch as a download always shows cce as a download option.
Yes, cce_public_x64.zip contains killswitch.
Youāre right. I uploaded an earlier version of cce.
Is cis 8012 safer?
1 Like
some antimalware tools get classified as false positive
for example kill switch is classified as malware by emsisoft
and Tdsskiller by kaspersky also classified as malware by emsisoft
i think itās just a false positive nothing to worry about
1 Like
I scanned with Hitman Pro: nothing found.
Kvrt is currently scanning, itās taking a while, the drive is quite large.
KVRT didnāt find anything, too.
I also suspected that they could be false positives.
No danger!
2 Likes
For those who may not be familiar with Killswitch:
Killswitch is not malware; however, If someone accesses your computer, and uses Killswitch incorrectly or maliciously, it can cause problems (just like many other utilities).
Some of those virus total detections appear to be false positives, while others are just the anti-malware company alerting that you have program that could be used maliciously, which is why it is designated as a potentially unwanted program (PUP) or a āGen:Variant.Application.KillSwitch.4ā.
If you installed Killswitch on your computer and donāt misuse it, then no problem.
Some of the antivirus vendors classify Killswitch as a PUP to warn you that if you did not install Killswitch, but it is present on your computer, then perhaps someone with malicious intent has access to your computer. So, Killswitch is not malware, and a PUP is not malware. Getting a PUP type alert from an antivirus company is basically suggesting that you determine for yourself if you want this program on your computer. Again, Killswitch is not a problem if you intended to install it and if you use it correctly.
Anyhow, designating something as a PUP is not really a false positive, since it is not being declared malware. These companies will likely keep potentially misused utilities on their PUP list. In fact, over the many years that I have used Virus total, at least one antivirus company has designated Killswitch as a PUP.
For the companies that appear to have falsely designated Killswitch as malware, they should either change their designation to more clearly reflect that Killswitch is a PUP or fix their false positive. An antivirus stating something is ādetectedā or āunsafeā is very vague, and is a lazy method of reporting.
9 Likes
Thank you for the detailed clarification.
1 Like
Very nice explanation!
Whoop dee doo dee doo doo !
Thanks a lot!