Your opinions needed.
Does Outpost Firewall Pro 2008 give greater and more effective both inbound and outbound protection than Comodo Pro 3.0 newest beta?
And here are the results of leak-tests:
As you can see Outpost Firewall Pro 2008 and Online Armor both pass all known leak-tests on defalut settings-I wonder how will Comodo Firewall Pro 3.0 Final pass these leak tests?
And what about configuration abilities,advanced logging,inbound protection and etc…-which firewall do you think is better?
I’m a fan of Comodo,and I still think Comodo 2.4.184 gives greater inbound protection,but I need opinions.
Thanks to everybody.
Melih stated in another thread, that 2.4 with other settings than default settings would have passed all tests.
3.0 will probably pass all those tests, too. So no worries here.
It is interesting that the “newcomer” Online Armor scored very well with their free product.
the threat model has changed since these leak tests were done. There are many other threats that one has to protect from, which v3 successfully does.
I am glad, Comodo led the way to force other providers to improve their security, we will continue to lead the industry with what Protection should be to make sure we increase the bar for others with each release!
Well, isn’t the main problem with any “leak test” that all of them don’t really prove “in the wild”, i.e. heuristic abilities of an application, but rather answer to threat environments that have already been made public? Ain’t this really all about getting through the already published tests? I start to disbelieve that being able to not bow to a certain leaktest that already has a NAME, is really all a firewall should be capable of. Or that it is the best only THEREFORE. Really not.
Just to be a bit of a critic, Melih? (You won’t kill me now, I know…)
But, isn’t stealthing ports a rather old thing for firewalls? Please don’t advertise it as “new” (ok, CPF now has this function, but I would not advertize it as “new”, even if it may be a new thing in CPF 3.XX now, but as a valuable program FEATURE, an ability.) Not as a new thing.
Last but not least: I prefer CPF over both Agnitum paid AND Online Armor free. Why?
- I am sure it’s the best FW (paid or none) at this very moment.
- I’ve been in love with the Monkees’ version of Neil Diamond’s song “I’m a believer” since I was ten.
And the real reason:
It is the most thoroughly developed Firewall that ever hit our planet. Beautiful to look at, easy to configure, very hard to beat.
Nothing will ever be unbeatable by the bad guys, of course. But CPF is something we use to call “Festung” (a bastion) here in Germany. And believe me, old Germans knew how to build their bastions. That is why the invading Romans tried to build their wall called LIMES. The LIMES proved to be not strong enough for the counter attacks. Now it’s not the age of Mars, Aquarius or Buddha, it’s the age of COMODO that arises.
Cheers, and please, don’t drink too much.
Hi MorphOS REBOL
The power of v3 is not that it can stealth ports, thats old news…
the power is Prevention! You will be hard pushed to find a malware out there that can penetrate v3 without being noticed. Known or any new uknown ones. that is the power!
Just wanted to hear something like that from you
well, yes, certainly. every single firewall is capable of port stealthing, even Windows XP SP2 firewall (or maybe it’s my router that stealthed?). But today’s firewalls are far beyond port stealthing, and HOW far - well that makes real difference. Controlling inbound traffic is rather simple, controlling outbound is not. The guy who wrote the “Why your firewall sucks” article really knows what he is talking about, and all these leaktests - they’re all about controlling outbound connections. Firewall needs to prevent interprocess communications, dll injections, physical memory access and all other stuff just because otherwise a simple trojan can use trusted app to call home without notifying user. These leaktests do not tell the real level of security, but if a firewall can block the leaktest - it can block anything that uses similar technique used in that particular leaktest.
PS the “Why your firewall sucks” article
quote: well, yes, certainly. every single firewall is capable of port stealthing, even Windows XP SP2 firewall
Second part is true, indeed (and I think it’s rather funny), yes Windoze FW does the job (still, no outbound protection…)
First part is untrue: No, not every FW is capable of stealthing ports, not even in our age of OH SO BELOVED WANNABE ANONYMITY. There are lots of commercial FW’s out there that don’t offer stealth mode in their free version.
Just to make things correct.
of course i meant REAL firewalls, not castrated free versions of paid ones :-))) anyway, CFP is a great example of free REAL firewall (B)
but i can say that Comodo V3 on my pc has passed every leaktest i have come across, in total at least 6 different tests, i am not a believer in matousec at all for various reasons, but i will download and run every single leak test they have listed and try it on Comodo V3.
Matousec does not test firewall in high secure mode, they only test standard modes, that leads to distorted view. PC Tools Firewall is much higher ranked with enhanced protection features turned on and the same is valid for Norton Firewall.
Each firewall was tested twice against 26 leak tests - once with its default, out-of-the-box settings, and once with its highest security settings.
though these are old tests
there is no one who knows everything, outbound protection relies on the user being able to know what to block or what to allow. there is no programmer himself that knows everything, for example is there any programmer who knows how to use every program language out there? there used to be 300 program languages, must be alot more by now since thats how much program languages there was a decade ago.
it all comes down to instinct some, what would you do if suddenly your firewall says there is a new update click yes to download it? would you know if by some s**t luck that one time some code from somewhere on your PC or on the net is trying to use your firewall for some ■■■■? no you wouldn’t i bet, well i ain’t a programmer along with most people, so if some super computer geek cannot be immune from lack of knoweldge sometimes and only being human then hmm no one can expect anyone else to be unsusceptible to the pitfalls of such stuff too.
and anyone who thinks they know it all and are able to avoid ever being a victim of any ■■■■ are just wating for a big downfall. i know cause at one time i thought i knew so much a long time ago only to release i knew hardly anything and nothing in computers i can control not when it comes to being connected to the internet the Big Wide Web, we are all suckers all we can do is try to be safe and never take it for granted that s**t cannot happen to us, we are just lucky if it doesn’t
hmm my 2 cents ;D
So you should be (:TNG) the internet is full of nasty things, including nasty people lol
its just like the real world :o lol
well dang! when is matousec.com going to update the leak tests so they can test v3…
I am looking forward to Comodo Firewall v4!!! haha
Can’t wait for a new update to V3 lol it took a long while but I have gotten used to 3.0 now and am quite happy with it
in a future update I hope there are some new features, like for one I hope there might be an easier way of setting up firewall policies. for non tech ppl. like to click something where it asks what you want to do and it gives you options and you click the option box and it proceeds to the next one, so in effect you tell the wizard what you want to do and it does the rest for you ;D
that would be a neat feature for making firewall polcies for whatever you want in CFP 3
and yeah would be nice if they update that matousec.com sometime soon to include all the new firewalls out there and see how they rate
"in a future update I hope there are some new features, like for one I hope there might be an easier way of setting up firewall policies. for non tech ppl. like to click something where it asks what you want to do and it gives you options and you click the option box and it proceeds to the next one, so in effect you tell the wizard what you want to do and it does the rest for you "
Agree with you 100% (:CLP)