I’m a new user to CPF, installed about a week ago. I was wondering why both Firefox and Thunderbird keep generating pop-ups, every day (or thereabouts) I am asked whether to allow them access, sometimes more than once?
Component monitor is in ‘Learn Mode’, and neither app. has been upgraded, surely all their components would have been learnt within a day or two.
Also is it advisable to switch the Component monitor from ‘learn’ to ‘on’ at some stage, and if so how long should CPF be given in ‘learn’ before making the switch to ‘on’? Or is the switch automatic?
If you open CPF and go to Security->Advanced->Misc. what ‘Alert frequency level’ do you got?
If you got got higher than ‘Very Low’, you’ll get more than one pop-up.
‘Low’ will show for incoming and outgoing.
If you got it to ‘Medium’, it’ll show for both TCP and UDP protocols, and incoming and outgoing, which’ll cause some alerts.
Also, do you check the ‘Remember my answer’ box, and is the item shown in the application monitor?
if you’ve ran all programs that uses Internet, you can set it to ‘On’, then you’ll get pop-ups if a new component is added or changed.
The FAQ links page pointed me to lots of Component Monitor threads, which have been very helpful. I’ve enabled ‘skip loopback for TCP connections’ (in Advanced–>Misc) cos I am not running a proxy server, I connect to the Internet through a router, and I think this will solve my Firefox repeat permission requests, unless you guys think this is a bad idea for reasons I do not yet appreciate? I’ll wait and see what happens with Thunderbird and post here again if it continues to ask permission (yes I am ticking ‘remember my answer’ to connection pop-ups).
The one thing I don’t understand is that, also in Advanced–>Misc, the option ‘Do not show any alerts for the applications certified by Comodo’ has always been selected, so why have Firefox and Thunderbird ever asked for connection permission after the first time?
When Firefox, Thunderbird or any other application is updated it changes the signature so the program is no longer recognized by CFP. Therefore next time the app tries to go online the firewall will ask about it again. This is partly due to the database not being updated regularly and partly how CFP works.
Thanks again, and, yes, I understand about that. I used to be a Zonealarm user and it always asked for connection permission immediately after ungrades, but I haven’t recently updated either.
What do you think about my enabling ‘skip loopback for TCP connections’ (in Advanced–>Misc)? Is this a good idea or not?
I don’t think it really necessary as this is not a likely source of attack. However, if you feel comfortable with it ticked and everything works ok for you then there I cant see any problem with it.
The database (encrypted safelist) in v2.4 is rather limited. As such, FF and TB are not in it. Yes, I know that’s sad. :’( I weep about it on a regular basis. CFP v3 (currently in Beta testing) will have a much-improved safelist when it hits a final release.
Hope that helps with that aspect of your question.
Dunno at this point; nothing official. I’d give it a month or two, based on experience. There will be several betas (probably around 4 - 5), then a few Release Candidates (about same #), then a Final. Even if they cook through 'em one per week, that’s still 2 months.
Closing Time: Don’t hesistate to contact an available moderator if this threads needs opening should you encounter additional questions related to the thread title.