Maybe redesign the current security approach making some kind of smart “Comodo Security”, thats able to route the network and file traffic/transactions(CPF), search for malware(CAVS/BO), protect with virtualisation(like layered Altris SVS), protect files/data streams(for ex. Credit card No).
I don’t mean standalone versions under one roof. I mean redesigned modular security application that provides total security. And hopefully stays free/donation(why not? )
Also
I totaly agree to that. BTW Comodo already has buffer overfollow-prevention system.
I tried to access trustfax from my pocket pc ---- I can but cant view any documents or send faxes-- are you developing a mobile trustfax package for pocket pc?
what i would like to see comodo implement would be a anti-redirect that could be added to the firewall and accessed after a warning in the same window along with a SCRIPT filter I have been using comodo firewall for some time and never regretted a minuet of it but i think if these to things could be added it would make a world of differents
Comodo has a very active Forum Community and V3 specifically suggest this Forum to ask for Support.
So in order to further improve support requests and troubleshooting V3 should have a Ruleset and Configuration Report.
This way Members don’t have to post screenshots and export Logs.
There should be only one place to go to generate a full textual report that list all the rules in a textual or HTML format.
This will shorten mostly all support Topics and will reduce the need to ask for missing or incomplete infos.
It would be easier to post a report containing something like
[b]iexplore.exe [/b]
ALLOW TCP OUT from IP any to IP any where source PORT is any destination port is 80
ALLOW UDP OUT from IP any to IP any where source PORT is any destination port is 53
BLOCK IP IN/OUT from IP any to IP any
[b]iexplore.exe [/b]
DNS client Service ALLOW
Loopback Networking ALLOW
Disk ALLOW
Keyboard ALLOW
Computer Monitor ALLOW
Protected Files and Folders ASK
[i]Protected Files and Folder Allowed List:[/i]
C:\windows\temp\*
[i]Protected Files and Folder Blocked List:[/i]
C:\windows\system32\*
instead of attaching screenshots or writing a ruleset by hand.
Another way to improve support would be the ability to import a textual rule in an application. So if a member doesn’t know how
to use the configuration dialogs it will possible to import another member generated ruleset for that app.
I guess that D+ Diagnostic can export its report too or provide a more detailed one in order to troubleshoot ceratin incompatibilities and issues.
I guess that a separate throubleshooting and reporting product could fullfill this task too.
Yes would be happy to as we all know web site are made and advertised as one thing but turn out to be another. after clicking the link you are redirected to let’s say a [warz] site the page was made to redirect the victim to a site that loads a virus, Trojan, Mal-wear with out the victim having any chance of backing out of the site. as they script the browser and lock you in. Now that’s where the Anti-redirect comes in it could cache the redirect by detecting the change in the link/script. and lock the browser and flash a small window to alert the soon to be victim that the site is redirecting theme to a known bad site and allow them to just kill the request and the FW could make a automatic rule to block that sites IP and any site it is pointing to and send feed back to comodo just like the file summiting that it already has
Is there a way for a firewall/defence+ to hide your internal IP in your network from getting exposed on internet without blocking all javascript in your browser? Can Defence+ maybe “see” that something suspicious is going on? A lot of navigation buttons and so on is done with java so I don’t want to turn it off completely and I would prefer if I don’t have to get a popup and approve every website i’m going to…
Here is how it’s done.
The point is, you should be concerned that a Java applet ran without your knowledge, found some information and passed it back to the server.
It was cross site leaking of java that gathered this information made possible by passing variables back from the applet and constructing a url in java to a web page using an iframe that contains the data to be collected. The server can then read this information, store and process the internal ip address as needed.
The only way to prevent this that we are aware of, is to disable active scripting in the browser.
How about software that recovers data from damaged DVDs, Something like BadCopy Pro but alot better and faster if possible. Alot of people have damaged cds and dvds they would like to recover to an iso or some sort to be used again. I would love to see comodo develop software like this. Let me know what you guys think?
Two suggestions for Comodo, given it’s central position in internet technology:
After looking at the troubles users have with the HIPS in CFP, and after seeing the trouble with trying to incoprorate the ideas of CMG, CAVS, BOC, CFP, DEFENSE+(HIPS) without conflict, and with teh many other non-comodo products out there which overlap, thre is clearly a need to identify functionality with a particular piece of software and to identify when software functionality is duplicated and when it creates compatibility. Would it not be wonderful to have a security software “meta-security scanner?” In short, users need to know where their setups are vulnerable and in what way, and what choices they have to address that problem, an automated trouble shooting guide? Perhaps a suite of security benchmarks?
After reviewing Comodo Forum discussion of virtual machines(and other sandbox techniques) and rootkit threats, both of which change focus of security from application level to kernel level threats, perhaps Comodo needs to provide or expand it’s current technology solutions to problems in these two areas. (Or, perhaps, after reviewing the discussions elswhere, I am not clear how these areas are addressed or not by the current spectrum of security tools.)
Devote some of your best minds to the development of help files, documentation, and information resources for users(see 1, above). If there is one thing security experts seem to agree on it is that savvy users have a better chance to survive in the stormy waters.
We have re-architected V3 firewall so that all Comodo products could work in harmony. You will see that new versions of all Comodo products will be utilising this architecture and will not suffer from any compatibility issues. The scanner idea you have is great, but a difficult one to build
Our V3 already offer kernel level protection! Kiss goodbye to rootkits!
3)Who better than our users to write the documentation for our users! pls check wiki.comodo.com
)