I’ve been searching through forums and I find it tough to find answers on certain things, maybe someone can clear it up for me?
Im running version 5.3 (just firewall and defence+)
How do I configure Comodo to ask on EVERYTHING including SYSTEM access attempts? so that I can have it learn what is safe and what I want to block.
In my mind I want a firewall to block intrusions aswell as safe applications phoning home or requesting updates
Whitelists… what is the deal with all those companies listed there? how do I clear them - nothing must be considered safe without my direct input.?
Paranoid Mode/Custom Policy Mode = Your in total control; you can’t blame CIS for allowing malware in
For Firewall
CIS > Firewall > Firewall Settings > Slide the bar up to paranoid mode > check create rules for safe applications > Alert Settings you can move the bar and the description changes > Apply/OK
For Defense+
CIS > Defense+ > Defense+ Settings > Paranoid Mode > Create Rule for safe applications > execution control tab
uncheck the following
Automatically scan unrecognized files in the cloud
Perform cloud based behavior analysis of unrecognized files
Sandbox settings > unckeck the following
Automatically trust the files from the trusted installers
This means that you are in complete control (Firewall/Defense+/Sandbox)
(No need for remove the TVL but IF you wish CIS > Defense+ > Computer security policy > trusted vendors list > Select one > Alt R (Hold it down to remove quicker)
I’ve had this installed for a week or so and Ive had some of the settings already enabled, but im going to mirror the ones you gave me, but I would like to be Re-asked for all applications and services ive already allowed aswell as system processes - to start with a clear contience so to speak … any thoughts on that?
If you go to
CIS> Firewall > Network security policy > Remove all but
comodo internet security
windows system application
windows updater applications
OK > stealth port wizard > Block all incoming (Bottom option) > OK
CIS > Defense+ > computer security policy >
Remove all but
comodo internet security
windows system application
windows updater applications
All applications
Also once you have done this i would recommend exporting this config so you can always ‘go back to defualt’ type of setting.
Windows sys applications are critical applications that windows use to operate ;
windows updater app’s are 'windows update/windows installer/CIS installer etc)
Yes you can ask them to but not recommended thus will create ALOT of alerts/pop ups
(To set them to ask simply click on the item in question > edit > select custom policy bubble)
You select one that is active; then click export (CIS > More > Manage My Configurations)
and save it to somewhere you can remember; and then when you need it you can import it and then activate it;
1. What does it mean by that?
2. There's so many! isn't there a quicker why to remove them all?
Also, what happens when a request pop’s up and is left unanswered and times out?
Is there a way to set it to display pop ups permanently until I answer them?
