Paranoid Mode - Confused?

Focuscar · April 21, 2012, 10:25am

I’m a bit confused about Paranoid Mode,

I have a simple program called Test.exe
I open CSP (Computer Security Policy) and add it as Trusted Application

When I run the program, I receive a notification that the program is unrecognized and is run as partially limited.

Paranoid Mode says :

Computer security policy is applied
Every action that is not listed in the policy is alerted to the user

Am I missing something here? coz Test.exe is actually listed in the policy as Trusted, so why am I being notified etc…

-------
P.S: I use Win7, Comodo v5.10, and I know how to move an application from unrecognized files section to the local trusted files database.

Dennis2 · April 21, 2012, 1:24pm

You have to add it to Defense+ / Trusted Files

This is the only way to stop the process from being Sandboxed.

If you run in Paranoid Mode it is really best to disable the Sandbox, otherwise this will happen every time you update a program leaving duplicate entries in Trusted Files.

Yes I do have the Sandbox activate but for test purposes only, it really does not serve any purpose in Paranoid Mode.

Dennis

Focuscar · April 25, 2012, 9:57am

okay thx.

Citizen_K · April 29, 2012, 9:50pm

Computer Security Policy means that if there is a rule in Defense + rules that rule will be followed. It does not extend to Trusted Files.

Focuscar · May 2, 2012, 2:30pm

I think you mean : Trusted files have priority over the rule in D+ rules (when sandbox is on).

So basically, even if Computer Security Policy contains a rule in Defense + rules that rule will not be followed (if Sandbox is enabled).

P.S: Like dennis2 suggested, I disabled Sandbox & the Paranoid mode seems to really fit my needs for control. Thx

Citizen_K · May 2, 2012, 2:40pm

Forget my quote. I misunderstood what you did. I thought you meant you have added it to Trusted Files where in fact you give it the Trusted Application Policy in Computer Security Policy. I will edit my post and strike my comment.

- So basically, even if Computer Security Policy contains a rule in Defense + rules that rule will [u]not[/u] be followed (if Sandbox is enabled).

P.S: Like dennis2 suggested, I disabled Sandbox & the Paranoid mode seems to really fit my needs for control. Thx

Dennis got it right.

Focuscar · May 2, 2012, 2:49pm

Ok. (The topic can be closed if needed.)