If the lists of “Trusted files” and “Trusted software vendors” will be empty, and I run a file that is signed by a trusted software vendor (vendor included in that list before cleaning), then a Defense+ pop-up alert tells me that this file is safe? This is a “Safe mode” to Defense+.
Cloud testing and analysis files for Defense+ turned off.
After several runs these files appear in the list of “Trusted files”.
As CIS recognizes that the file is safe, because all the lists are empty?
The Comodo safe list is both local and in the cloud and more than a year ago it had 6 million, not 6 billion, files in it. I don’t know how big it is these days.
The Comodo safe list is not viewable for us. The list is both local, it comes with CIS when it is installed, and it also has a cloud component. The cloud will make the latest safe files available for CIS.
This list is used only during the initial installation of the CIS to scan files that are not contained in the lists of “Trusted Files” and files signed by trusted vendors of programs?
This list is automatically used only if enabled Sandbox?
Automatic file check on this list is only done if the cloud scan of files allowed?
The list is always used when running in all D+ modes except Paranoid mode. The list is used regardless of whether the sandbox is enabled or not.
Automatic file check on this list is only done if the cloud scan of files allowed?
Thanks.
The safe list, which cannot be viewed, is both stored locally and in the cloud.
If you would disable the D+ cloud look up in Execution Control Settings you would still use the local list. Only in Paranoid mode the safe list and Trusted Files list are disregarded.
EricJH, “Comodo safelist” - that this list is used to scan unrecognized files if enabled “Automatically scan unrecognized files in the cloud” (in “Execution Control Settings”)?
