Possible to install firewall only with no Defense+?

With the newest version of Comodo there seems to be no download for the firewall only. You now have to download the full CIS suite, with Defense+ and antivirus, as one big download.

During install there is an option to install firewall only or firewall and Defense+, but even if you check firewall only it still installs Defense+ and has it enabled.

Is it possible to download and/or install the firewall only, without Defense+?

Does the firewall work with without Defense+?
It seems to me that Defense+ is just a file monitoring system that checks to make sure that malicious programs don’t run or change critical files. That’s fine but it seems like it is separate from a firewall. Does CPF still do MD5 checking without it?

D+ is the HIPS portion of CIS:

"The Defense+ component of Comodo Internet Security (hereafter known simply as Defense+) is a host intrusion prevention system that constantly monitors the activities of all executable files on your PC. With Defense+ activated, the user is warned EVERY time an unknown application executable (.exe, .dll, .sys, .bat etc) attempts to run. The only executables that are allowed to run are the ones you give permission to.

Defense+ also protects against data theft, computer crashes and system damage by preventing most types of buffer overflow attacks. This type of attack occurs when a malicious program or script deliberately sends more data to its memory buffer than that the buffer can handle. It is at this point that a successful attack can create a back door to the system through which a hacker can gain access. The goal of most attacks is to install malware onto the compromised PC whereby the hacker can reformat the hard drive, steal sensitive user information, or even install programs that transform the machine into a Zombie PC. For more details refer Image Execution Control Settings."

The firewall works fine without D+ being enabled.
In D+ > Advanced > D+ Settings there is the ability to permanently disable D+.

What do you mean by MD5 checking? As far as I know, CFP uses it to compare the trusted files on its white list. Is that what you mean? Or in Firewall > Advanced > Attack Detection Settings > Miscellaneous there are also options like packet check sum verification.

Thank you for your answer. I understand it better now.

What I meant by MD5 checking is the MD5 signature of .exe files. SInce posting I have done some testing with CPF with D+ on and disabled and it appears as though it does not check. A simple leaktest program prooved that it failed to verify the validity of the file in question. D+ in paranoid mode did nothing to stop it.

Can you post here about this issue. (please provide the leak test, steps to reproduce the undesired outcome, etc.) it would be greatly appreciated. :slight_smile:

Done. I hope it helps. I would like to find a new updated firewall to replace Kerio but so far I just found nothing better yet.