Dont give popup alerts under D+ general settings if set to allow, allows all the D+ popups automatically. But the unlimited Rights popup is still there.
Please make the settings to allow unlimited rights popup automatically too or give a seperate option to allow/block unlimited rights popup too.
I know this will weaken CIS security but so does allowing other D+ popups for which you have given the option.
And I dont think it weakens CIS coz its Custom Security that will be selected by the user for his needs. CIS default will remain as it is.
With the above change users like me who only want to use FW, AV & Autosandbox will be able to do so.
You want to allow an unknown application get “Unlimited Rights Access” to do anything in your PC without being sandboxed ??? ???
You don’t want D+ and you don’t want sandbox to protect your PC from the most potential dangerous attack. You insist on having the sandbox enable but, at the same time, do not want unknown applications be sandboxed.
Are your request logical? Why don’t you just disable D+ all together ??? ???
@naren
I can understand what you are asking. (Please read my reply carefully, too)
When you get complaints from pc users about a CIS pop-up, you turn to Comodo asking for elimination of the pop-up. I think you may eventually disable the sandbox too when a pc user complain about the sandbox causing application malfunctioning
You are tweaking a “default deny” system to a “default allow” system. For some PC users who are unable to learn, may be a true “default allow” security system + safe surfing&downloading habit is more suitable and easier for them.
By the way, I believe safe surfing and downloading habit is more import than a so call “the best” security software.
I read your replies frds. The reason I am asking for the option, I will try to explain with an example.
Basic Security / Normal Security - FW + AV - This you can get easily with many freeware combination. This is the easiest usable security for any type of users.
Excellent Security / Advanced Security - FW + AV + HIPS - This too you can get with freeware combination. This is the strongest but not usable for every users.
Basic Security Plus / Medium or Optimum Security - FW + AV + AutoSandbox - Better security than Basic Security & usable too. Offcoz this security is not equivalent to Excellent Security but its better infact way better than Basic Security coz Comodo AutoSandbox is a very good protection without hassles.
Many users run Basic Security coz they dont like HIPS & Popups.
So wouldn’t it be good instead of Basic Security, they run a Security way Better than Basic?
Good
Better
Best
They will not have the Best but they will have Better which will be superior to Good which they were running till now.
You are NOT just asking for “Basic Security Plus / Medium or Optimum Security - FW + AV + AutoSandbox”
You are asking for FW + AV + (AutoSandbox that do not sandboxing the most dangerous attacks).
Beside, I think that your tweaked CIS using “default deny” design principle may not be safer than a system using your so call Basic Security that design based on “default allow” principle from the ground up.
I didn’t understood this, “You are asking for FW + AV + (AutoSandbox that do not sandboxing the most dangerous attacks).”
Can you plzz explain a little?
What I understand from this is that though autosandbox will sandbox many malware & keep the system safe, I will also not be protected from many malware for which CIS gives Unlimited Rights popup coz unlimited rights popup will be allowed automatically.
You are asking for an Autosandbox that do not sandbox UNKNOWN programs which requesting for “Unlimited Rights” but just sandboxing UNKNOWN programs which requesting for “Limited Rights”.
“Unlimited Rights” is more dangerous than “Limited Rights”. For example, “Unlimited Rights” allows a program formatting your hard disk but “Limited Right” don’t. Don’t you think “Unlimited Rights” request is more dangerous than “Limited Rights” request?
I think one way to reduce (not eliminate) the Pop up´s of “UNLIMITED RIGHTS” is to do the scan in the cloud before they show this pop up.
If i am not mistaken it only will be sent to the cloud if you choose “sandbox” or “blocked”. If you choose allow it will not be sent to check the cloud blacklist.
Maybe the priority should be changed. Right now before a file is sandbox, is first is sent to the cloud, maybe in the “UNLIMITED RIGHTS” it should be the same (the FLS checks are near instantaneous).
I think for what you are asking for, you will have to wait for V6. with full virtualization. With full virtualizattion the program can run under the supervision of comodo even with administrative privileges.
You should make this wish.
Of course it should be as an option because, for example there are windows exploits that require admin privileges. For the people who want “total” security they would not enable this option.
EDIT- That is how i interpreted the help file regarding the Scanning Processes for the UNLIMITED RIGHTS. But i might be wrong.
I know Unlimited Rights is dangerous than Limited Rights. And I know this option will decrease CIS protection but its an optional setting & not the default. Optional setting to tonedown CIS for one’s suitability. Offcoz this will loose some protection thats why its optional.
Unlimited Rights popup or any popup are for those who understands them otherwise the better those popup protects you when replied correctly, it can harm you when replied wrongly & the result corrupt installation , corrupt uninstalltion, corrupt programs, etc. These things I have experienced with frds & home with CIS installed.
Personally I think the people who you are helping with with their computers need to start taking responsibility if they want to install and try software.
Give them a set of reputable download sites from which they can download stuff from. If they want to download stuff from other sites then it is their responsibility if they install malware infected stuff. A good reminder about their responsibility is to have them pay you for cleaning up the mess they made.
I see little to no use in taking away that reminder.
These people need to grow up; if they want to install new software then certain responsibilities come with that.
I understood the points, logic & all the hidden concerns for the users in your replies bro.
I think my request for the option is logical.
In 5.8 they have introduced the option to allow D+ popups automatically, doesn’t it reduces the security?
Didn’t they introduced the option to tonedown CIS for those who dont want to see popups? And the new custom installtion of 5.8 mentions, Dont Give Popup Alerts - CIS will automatically allow many popups, aren’t here they mentioning about the same option which reduces security?
And I think by introducing such options they are being logical. CIS will always remain the excellent software it is but with such options users can customize it to their needs.
Logic can be found in any & everything including love, you just need a good pair of eyes which may not be of same size but look logical
D+ with automatic sandbox disabled and allow D+ alerts: catastrophic failure; D+ is disabled
Didn't they introduced the option to tonedown CIS for those who dont want to see popups? And the new custom installtion of 5.8 mentions, Dont Give Popup Alerts - CIS will automatically allow many popups, aren't here they mentioning about the same option which reduces security?
It was added by requests of sys admins. As stated it reduces the security level.
And I think by introducing such options they are being logical. CIS will always remain the excellent software it is but with such options users can customize it to their needs.
Logic can be found in any & everything including love, you just need a good pair of eyes which may not be of same size but look logical
Thanxx
Naren
Using logic would have shown where it would reduce security. Just go back to the foundation and start from there. That always works.
Using logic would have shown where it would reduce security. Just go back to the foundation and start from there. That always works.
Gosh! Not Again
I am with Comodo from version 2. I have followed the development of CIS & used every version of CIS & I know quite well how CIS works & what would be the effect on CIS security if any module or settings or options are customized.
And I have mentioned this here & in other threads too. Then too the replies are that security will be reduced, which I have already mentioned & accepted.
But then the replies are disable D+ & run only FW & AV. So whats wrong if I want to run Autosandbox too with FW & AV?
Then the replies are Autosandbox is for Limited Rights only. So what? Autosandbox will give me little extra protection than FW & AV only.
Then the replies are Unlimited Rights Popup protects dangerous things than Autosandbox. I know this & I want to run just FW, AV & AutoSB. So whats wrong in it?
I requested for the option coz currently I dont find any way to allow Unlimited Rights Popup automatically with any changes in the settings & keep the Autosandbox working.
The reply here is instead of allowing Unlimited Rights Popup & decreasing security, disable D+ & run FW & AV Only, And I think allowing Unlimited Rights Popup & decreasing security, run FW, AV & AutoSB, So whats wrong or not logical in it ?
