I installed V3 a few days ago. I have been using V2.4 for quite a while before. I have noticed that since installing V3, as far as I can remember, it has NEVER asked if I want to allow or deny an application access to the net…
I just tried it out on one of my games that requires internet access and I know for a fact I haven’t played it since installing V3, so it should ask if I want to allow it to access the net or not, but it didn’t…
Are my settings wrong or something? I would like to be asked if an application can have internet access or not.
Another question is: Should I add my antivirus program to the “Trusted Applications” list? If I do this, will Comodo HIPS still protect my AV from being completely destroyed by a virus/malware, which I know many now target antiviruses first, then do their damage.
There are 2 reason as to why CFP may not give you an alert for internet access: 1. If it is set to clean pc mode, then all files on the pc are seen as safe and allowed; 2. If the application is in the certified safelist from comodo, it will also be allowed. You can change these settings if you wish.
In regard to your antivirus, all files in the defence+ area are protected from modification, etc. It is best to give other security software trusted status, so they can function fully.
The firewall has no clean pc mode, the HIPS does, but the default firewall “train with safe mode” will allow and remember for programs within a database of safe ones. For the traditional, noisier approach, switch from train with safe to “custom”.
Yes you should define any security software as trusted to avoid problems. As for temination protection, Defense+ is great for this. Firstly, any intruder tying to kill any of your programs will be blocked even in clean PC mode; actually it won’t even get to run in the first place. On top of this you can make D+ protect some specific programs or groups of programs (policies) like this:
Even in clean PC mode and even a virus present before CFP’s installation would be thus blocked. But you should click on “modify…” and exclude %sysdir%\system32\csrss.exe" from that protection so that Windows can shut down without problems. Anyway as you can see this is hardly necessary since any malware that just entered the system won’t be considered safe by D+ even if clean PC mode, and even if you tell D+ to let it run because it’s a trojan horse that tricked you, if it tries to terminate your AV it will be caught.
I installed V3 this morning and I am having the same problem with it not asking if I want to allow or deny any application either. I had the previous version set up to always ask for everything except 2 items but I never been asked to allow or deny any application since the install of this newer version. I tried going to Network Security Policy and purging/removing all of the application rules in hope that it would then start to ask me for all the applications and I could make my choices but that didn’t work.
As with the person who first posted this, I too would like to be asked in an application can have internet access.
You can go to Firewall–> advanced–> firewall behavior settings–> and set the slider to “custom policy mode” to get it to alert every time a connection is made.
Thank you very much everyone for explaining this to me. I now understand it fully. 8)
I checked the network security policy and it turns out the game has already been allowed, so that is why it was not asking me - and every other program I use is probably deemed safe.
I do really LOVE this firewall so well done for making such a fantastic product! (B) (B) (R) (L)