Unsolved
This post is more than 5 years old
2 Intern
•
5.8K Posts
0
5266
Do Not Rely on Comodo 3’s ‘Basic Firewall’
The latest news from Scot Finnie:
"I have learned directly from Comodo executives that the Basic Firewall installation option of Comodo 3 does not offer any outbound leak protection whatsoever. They may add that protection in a future version of Comodo 3.x. The Basic Firewall option turns off Comodo 3’s Defense+ HIPS module, which provides the leak protection for Comodo 3.
The previous generation of the Comodo 2.4 provided anti-leak protection without the HIPS."
Full read: http://blog.scotsnewsletter.com/2008/01/20/do-not-rely-on-comodo-3s-basic-firewall/
Full read: http://blog.scotsnewsletter.com/2008/01/20/do-not-rely-on-comodo-3s-basic-firewall/
Now that's a big OOPS on Comodo's part, not making that clear from the beginning.
Bottom line: if you use CFP 3 without the Advanced+ option, you might as well just use Windows FW.
joe53
2 Intern
2 Intern
•
5.8K Posts
0
January 22nd, 2008 05:00
Message Edited by joe53 on 01-22-2008 05:24 AM
Judy Shapiro
1 Message
0
January 24th, 2008 16:00
As an employee of Comodo, we work hard to make the best security solutions out there, bar none. The post from Scot had some incorrect assumptions including the erroneous belief that in certain installation modes, Comodo Firewall Pro does not have outbound protection – when in fact it does. It is worth repeating -- Comodo Firewall Pro does provide outbound protection in all installation modes. Scot’s assertion that it did not to have outbound protection is a serious accusation based on his misunderstanding of the product. We are anxious to correct this misperception as misinformation can lead to the wrong conclusions.
Melih Abdulhayoglu, Comodo CEO explained his position regarding Scot’s post in the Comodo Forum http://forums.comodo.com/feedbackcommentsannouncementsnews/feedback_cfp_3_basic_installation_merged-t18598.0.html;msg128025#msg128025
At Comodo a point of pride is that fact that we are open to feedback. Good and bad. There is no small irony to the fact that this “basic” firewall installation mode which caused all confusion was a last minute addition because users wanted that option. We will continue to respond to our users because that is what ultimately creates the most brilliant solutions. That’s as it should be.
Judy Shapiro
joe53
2 Intern
2 Intern
•
5.8K Posts
0
January 24th, 2008 22:00
1) The basic CFP 3 firewall, without Defense+/HIPS, does not protect against outbound malware
2) The basic version thus will not pass most leak-tests
3) The basic version does detect other outbound traffic, such as attempts by WMP and other legit apps to phone home. (In this sense I erred in stating it was no better than Windows FW, and hereby retract that statement.)
4) The basic version was offered because beta testers indicated they might want to use this with other HIPS protection programs.
5) The default (and recommended) installation is the full version, with D+.
(and note that 3.0 has yet to be tested).
Message Edited by joe53 on 01-24-2008 07:15 PM