please read the manual one time. and when you have questions left, feel free to ask.
i only allow what NEEDS connection to the internet. and only OUTgoing.
you have a firewall because SYSTEM doesnt need contact to or from the internet.
you dont know if its malware or not, only when you loaded regular software from trusted spaces, and when you use an antivirus (but it can fail though).
use the stealth port wizard in comodo. hide me from everyone.
“only outgoing” means, you get requested packets, but unrequested contacts from the internet are blocked. you want to use the internet, but you dont want the internet to use your pc.
3) you have a firewall because SYSTEM doesnt need contact to or from the internet.
???
What item, in what part of Comodo and what version do you define as “system”?
you want to use the internet, but you dont want the internet to use your pc.
I don't want either my computer to leak whatever because everything outbound should be allowed, and i think that one should have full control not only of the inbound, but also of the outbound packets.
In CIS3, defense+, the Windows System Application group, altough no one exactly knows what it does or not since it is preset, definitely needs to connect to internet (e.g. lsass but, true enough, “system” is a dedicated subgroup in this group).
In the firewall, i have a system allowing rule for udp ports 135-139, outbound to LAN, and coherent with what you say: there’s no LAN access if not allowing Netbios on TCP/IP inside the LAN.
Nevertheless, and altough my only other system firewall rule (ask for whatever else) forever remains silent, is it some proof that Netbios on TCP/IP wouln’t ever need “system” on the WAN side, even if the absence of WAN network shares?