In my Vista → file sharing and networking center I’m not able to disable the
file sharing option. It is permanently on and grayed out.
Vista claims I should check settings of my firewall to change this setting.
My goal is to switch this option off.
Where in Comodo settings have I take a look to be able to
switch off the file sharing under vista file sharing and networking center ?
As soon as Comodo is shut down and the windows firewall enabled these settings
are no more grayed out and I can manipulate them as I want.
Disabling Windows Firewall results in graying out several option in the network center.
That means practically Vista can control these settings as long as its own firewall is running.
If any 3rd party firewall is in use one must control it with your firewall.
What are the appropriate Comodo settings to disable/suppress file sharing ?
Sharing own resources is here in focus. Not accessing network shares of other LAN computeres.
In the control panel there is a message that says, “for sharing and discovery to work properly, make sure the settings in your firewall program match the following settings.”
I want network discovery “off”
file sharing “off”
public folder “off”
printer sharing “off”
password protected sharing “on”
media sharing “off”
Using the stealth ports wizard will effectively make the same rules, right? Because when I click the bottom most link, “show me all the shared network folders on this computer,” a window with Network/(My computer name/Printers shows up. However, no shared folders are coming up.
In the control panel there is a message that says, "for sharing and discovery to work properly, make sure the settings in your firewall program match the following settings."
I'm assuming this is a Window Vista control panel message and is not generated by CFP. Correct?
When you say
I want network discovery "off"
file sharing "off"
public folder "off"
printer sharing "off"
password protected sharing "on"
media sharing "off"
these are the objectives you want to achieve and are not the "following settings" referenced in your first quote. Correct?
Using the stealth ports wizard will effectively make the same rules, right?
It depends on which of the three wizard options you chose. The first creates rules that stealth your PC from everyone except those in networks deemed to be trusted by you. The second creates rules that will prompt you on each incoming connecton attempt. The third will will stealth your PC from everyone.
Which option is right depends on exactly what you are trying to achieve.
Because when I click the bottom most link, "show me all the shared network folders on this computer," a window with Network/(My computer name/Printers shows up. However, no shared folders are coming up.
Clicking that link on your PC has nothing at all to do with CFP. CFP monitors and control connections going in or out of your PC. That link just displays things that currently exist on your PC, not on other PCs.
What were you expecting that link to display? This will give us some clue as to what you are trying to achieve and how to achieve it.
In other words, as soon as comodo firewall is in use one can control the file sharing setting (vista, file sharing and networking center) only from comodo GUI. Some other settings can be affected as well. One can recognize that cause affected settings are grayed out. And the sharing and network center claims one should consult the own firewall for controlling these settings.
How can I disable file sharing in the comodo GUI ?
Disabling of own shares in focus here not accessing the network shares.
“I’m assuming this is a Window Vista control panel message and is not generated by CFP. Correct?”
Yes
“these are the objectives you want to achieve and are not the “following settings” referenced in your first quote. Correct?”
They are the following settings, and I want to make sure the firewall coincides with those settings. Since I have to turn off Windows firewall, the comodo one takes the place.
I have the “stealth all ports” setting in comodo.
"Clicking that link on your PC has nothing at all to do with CFP. CFP monitors and control connections going in or out of your PC. That link just displays things that currently exist on your PC, not on other PCs.
What were you expecting that link to display? This will give us some clue as to what you are trying to achieve and how to achieve it."
What I meant was that when I had only Vista firewall, turning off “network discovery” would disable the ability to see any computers on the network. With Comodo, I can see the computers. It most likely has to do with the “Allow all outbound” global rule.
What you want is impossible with CFP. Here is why. In order for network discovery off, and file sharing off, windows firewall MUST BE ON!!! Its dumb I know, however CFP will protect you from incoming connections, so even if those options are on your safe. The other options CAN be disable with out having windows firewall on.
So you chose the third opion - stealth this PC to everyone with no exceptions?
What I meant was that when I had only Vista firewall, turning off “network discovery” would disable the ability to see any computers on the network. With Comodo, I can see the computers. It most likely has to do with the “Allow all outbound” global rule.
Because when I click the bottom most link, "show me all the shared network folders on this computer," a window with Network/(My computer name/Printers shows up. However, no shared folders are coming up.
Do you actually have any shared folders on this PC?
Comodo should work like the Windows Firewall as described in Network Discovery - Turn On or Off | Vista Forums, for example. If the network is public (Vista term) or untrusted (CFP term) then Network Discovery should be turned off by default in CFP. If it is private (Vista term) or trusted (CFP term) then it should be turned on. If it doesn’t work like that, probably a bug. I don’t think CFP has a separate switch for file sharing, so going to Stealth Port Wizard and setting up a trusted network should turn them both on in Comodo. I don’t share files, but doing a search on “file sharing” here should bring up some useful threads on other users experiences. I have attached a copy of the description from the Vista Networking Center for reference.
so as long as you have your router stealthed and have run the stealth port wizard (option 2 or 3), it won’t matter if network discovery/file sharing is on because no one will see your network?
Correct. Remember these are windows settings not truths. For example, just because vista has file and printer sharing on, and CFP is active, CFP won’t allow connections because windows says so. CFP will continue to deny incoming connections and attempts to read your computer’s resources, so its like file and printer sharing isn’t even active.
Forgive me for sounding like an unintelligent idiot, but this is creating a vunerability. Just because the CFP is going to stealth my ports, I would still want my operating system to know I have NO INTENTIONS AT ALL of sharing files. How do I see this as a vunerablility?
It will create a resoucre conflict at some point. I know that it wont be with Comodo, necessarily, but if Windows thinks I want a certain function running, or available, it will constantly have some sort of pointer or check system on that particular function. THIS IS FACT WITH ANY MICROSOFT PRODUCT!!! I believe Comodo Firewall to be outstanding pprotection, but ther has got to be a way to make sure windows knows I have no intention EVER of using its filesharing capabilities. Windows will end up using whatever means necessary to establish its stance. It will use other programs that maybe Comodo has marked as ‘Safe’ to push its way through. If you have ever tried to permantly block a windows function you know there is quite a bit of intelligence to this comment. (i.e. tyring to run realplayer w/out media player in the system as well…HUGE CONFLICTS).
I am having a hard time swallowing this one, simply because of the anti-trust suites MS is still paying out for exactly the same base reasons. I will be testing other firewalls to find out how correct this statement is. Please take no insult, I do know that things like this do exist in the windows platform but seem to recall intensive workings on this particualr area (network compatibility) of the windows OS(Vista, Longhorn, etc.).
Again, another selection Comodo just makes for me concerning my OS and its running enviroment. In other word try installing without using Defense + at all. You can’t! You have to still go in and disable alerts even though the check box which is supposed to de-activate D+ is checked. Right now I am investigating a Video card malfunction that seemed to start taking place after a stupid D+ alert went up because I had forgotten that I still had to go in and “Disable” functions of D+ when it is telling me from the Comodo Firewall control panel that it is inactive. This is why I dont trus that file sharing is being prevented correctly.
Can you pretend I am your graqndma and explain in terms she could actually do this from? It’s been a while since my A+ and MCSE, but I never did get into just the technical terms. MS changes its GUI to much for that. Also, will this cause conflicts in communication to my router?
No it does not affect your router Netbios is only for file sharing on a computer network.
The only thing is it will not change the setting ie file sharing is on only the Windows Firewall can do that.
Do you want screenshots or just me to explain how to change the setting.
Dennis
EDIT Please go to this page on GRC Shields Up explains Netbios better than I can link below.