That probably is not a bug but a problem of design.
When using “Safe Mode” and not checking “Create rules for safe application”, such rules are created. That was very confusing for me because I expected no rules to be created automatically. Now I’m using “Custom Policy Mode” and created a rule that asks when an executable tries to connect to the network.
I am wondering what the checkbox “Create rules for safe application” is good for (or when it is used)…
Operating System: Windows 7 Pro b7600 x64
CIS version: 4.0.141842.828
Predefined configuration: COMODO - Proactive Security
Defense+ mode: Safe Mode
Creating rules for Safe Applications: Disabled
I have a similar issue with Defense+. Even though option ‘Creating rules for safe applications’ is disabled, rules for some safe application are still created. I removed almost all rules for safe application from Computer Security Policy leaving only the file group policies predefined by Comodo and a few custom rules for processes: explorer.exe, cmd.exe, runonce.exe, taskeng.exe. These are set to Windows System Application. So in total I have now 33 policies in Computer Security Policy. Each time I reboot PC 5 rules for safe applications are recreated for the following processes.