Please, check a hash of the applications in the Firewall Rules.

comfireuser · January 9, 2012, 7:03pm

This is really a leak. See Comodo Firewall FAILED CHALeaktest.

Check of the hash for applications in the Firewall Rules must be present.

Viper94 · January 9, 2012, 9:09pm

+100 Yes

Defense+ has this feature already…

comfireuser · January 10, 2012, 7:32am

What version?

wasgij6 · January 10, 2012, 7:36am

all that im aware of but only if there is a rule in the computer security policy. the trusted files list uses file path

Viper94 · January 10, 2012, 2:57pm

When I add an file to the trusted files list…
I have CIS 5.9

[attachment deleted by admin]

Radaghast · January 10, 2012, 10:31pm

It’s probably worth pointing out there are different sets of hash values at play here, there’s the actual file hash and there’s some sort of internal hash the CIS uses.

As an example install version 9 of firefox and check the hash table, then let it update to 9.0.1 and check the hash table again. (images) As can be seen, the hash values for the file are different but because the application is digitally signed as well as ‘trusted’ by CIS, no additional alerts are generated for the application following the upgrade.

[attachment deleted by admin]

comfireuser · January 11, 2012, 8:36am

I told about hash checking of applications in the Firewall Rules not TFL.

Shurik_Al · January 11, 2012, 9:29pm

+1, maybe optionaly