Hi Melih Thanks for taking the time to read and reply to this.
I’m no photoshop guru (mspaint more like), so please bear with me, but here’s the basic gist of it.
(I’m referring here to D+, the firewall interface is well thought out, requires only alphabetical sorting IMO )
I feel that sorting the processes alphabetically is extremely important, as it doesn’t take much time for the process list to become very long, and thus make it increasingly difficult to find the process you’re looking for. This applies especially to programs without icons.
This is less important for the predefined groups (Windows System Services, Windows Updaters, Comodo Firewall Pro) as those groups have a fairly small number of entries, which aren’t going to increase over time.
When you double click on a process name, I think that this window
should be skipped altogether, and replaced with something like
with the full path shown in the title bar. (the red boxes signify tabs )
A processes’ grouping (Trusted, Limited, Updater / Installer, etc) could be defined via a right click menu in the “Computer Security Policy” window, and perhaps also a “treat this program as” drop down menu in the “Process Access Rights” tab.
The “run an executable” entry currently in “process access rights” could be replaced with a third tab called “process permissions” or something similar.
This 3rd tab could show a list of all programs (just like the “computer security policy” window, with 2 radio buttons next to each process, one for parent processes, and another for child processes. Edit - I actually think that drop down menus would be better, a parent drop down menu and a child one. This would allow for Allow / Deny / Ask, as is in the firewall.
There could also be a “global” setting, which would set the default for unspecified parent and child permissions of that process.
This would make it much easier to view and edit all of the permissions allowed that process, without having to open and close multiple windows to get to all the rule editing areas.
(just imagine the green boxes are drop down menus )
I would keep the “add”, “remove”, and “purge” buttons, as they are all useful, the “edit” button could be dropped as you would edit the permissions by clicking on the drop down menus directly, but you would need an “Apply” button in its place.
Within the “Process Access Rights”, and “Protection Settings” tabs, opening up another window via the “Modify” button is unavoidable, but again, sorting by alphabetical order would make it much more navigable, displaying the process name (Probably not path due to lack of room) in the title bar would make it easy to tell at a glance which processes permissions you are viewing.
Each tab should have it’s own “What do these settings do?” link to its’ section in the helpfile, of course.
In regards to the D+ → Common Tasks section of the main program interface, “My Protected Files”, “My Quarantined Files”, “My Pending Files”, and “My Own Safe Files” could be condensed into a single link called “My File Tasks” (I believe something like this has already been suggested by another forum member). This link could open a window with 5 tabs, encompassing “My File Groups” also, which is currently hidden in D+ → Common Tasks → My Protected Files → Groups.
(again, red boxes signify tabs)
Edit- upon consideration, I believe that “My File Groups” probably deserves it’s own link in D+ → Common Tasks, as it’s purpose is somewhat different to the other file sorting tasks.
“My Protected Registry Keys”, and “My Protected COM Interfaces” should be placed under D+ → Advanced Tasks(moved from common tasks), and condensed into a link called something like “Advanced Protection Settings”. The link would open a single window, with a tab for protected reg keys, and another for protected COM interfaces
“D+ Events” I feel should be grouped in the same sections as the rules themselves are, but the ability to right click on an event in the log → go to process rule would overcome this, and it would be a neat feature to have in any case, for the firewall as well.
A link somewhere in the main interface which will launch cpflogvw.exe directly would be a nice feature, if not in the main interface, maybe via right click on the cpf icon in the systray?
(On the topic of logging, I would really like to see D+ have the ability to perform more detailed logging, (optional) for eg logging all processes launched, which process launched it, whether the action was allowed or denied and the time this occured. This would make trouble shooting (“it worked yesterday, why won’t it work today?”) much easier, and will allow those who are so inclined to tighten up their rules considerably. However, I suspect that’s a topic for the wish list thread )
Well, that’s pretty much all I’ve got, and it’s pretty late here so I’ll leave it at that. However, I did want you to know Melih that I really do appreciate you taking the time to read my post, and I hope my pitiful efforts at mspaint covey what I’m trying to say.