Introduction
|
Many of us dislike Comodo's Defense+ simply because it is so naggy. It bombards us with pop-ups, sometimes causing lag, and doesn't seem to trust the safe software we have. This article will show you a series of steps and procedures how to tame this overprotective HIPS This article is outdated, and for Comodo Firewall Version 3. Please do not use it as your only guide, especially on later versions. |
A. Your security settings
|
First of all, in order for the suggestions in this article to work 100% properly, Comodo's Defense+ level must be in "Clean PC Mode". If not, My Pending Files will not automatically detect new potentially dangerous files for you to evaluate. If you don't want that, do not follow section C (reading it may still help you). Secondly, although optional, checking everything under Defense+ "Monitor Settings" (Defense+ Tab>Advanced>Defense+ Settings>Monitor Settings) will increase your security. It'll cause the alerts to appear more often, but if you follow this guide properly, that won't be of an issue for your trusted programs. Lastly, both section C and D will not work if your Comodo Defense+ level is "Paranoid Mode". |
B. Treat this application as ...
|
First of all, something that quite a few people knows, is the "Treat this application as:" part of a Defense+ alert. In order to view it (if it's hidden), you have to click the more options trigger underneath the message at the left side. There you will see a variety of option, but the 2 most useful are: "Installer or Updater" and "Trusted Application".
|
C. My pending files
|
Next is something less known, the "My Pending Files". It monitors all new, unknown to Comodo's database, files that have potentially dangerous extensions. In order to access it, you have to open Comodo and click "waiting for your review" under "Proactive Defense" in the "Summary" tab.
|
D. My Own Safe Files & My Trusted Software Vendors
|
My Safe Files and My Safe Vendors are both useful whitelists that gives additional rights to whatever files or vendors you trust. Although My Pending Files works more efficiently than manually adding files in My Safe Files (especially when you have a large whitelist that'll take a long time to load), this might be better if you're unsure about what you have in your computer. Do not add anything to either unless Comodo keeps on alerting you about a safe file or files from trusted vendors. The locations are: "My Own Safe Files" (Defense+ Tab > Common Tasks > My Own Safe Files), "My Safe Software Vendors" (Defense+ Tab > Common Tasks > My Trusted Software Vendors).
|
E. Remember my answer
|
Don't always check remember my answer in alerts, which creates rules in Comodo's Security Policies.
|
F. Purging
|
It is important to regularly purge old non-existing entries within both its Defense+ rules, Firewall rules, and "My Own Safe Files".
|
G. Training mode
|
Lastly, there's the old set Defense+ security level to "Training Mode". I do not recommend it unless you are absolutely sure you have a clean computer and only do safe tasks on it during that time. That may be fine if you are lazy and security conscious, but definitely not if you are forgetful (forgetting to set it back makes it completely useless). |
Conclusion
|
By following these practices your computer will be easier to use and better protected. I hope this article helps change your mind about Comodo Defense+. J_ L (Special thanks to Midnightcowboy, peter, and PsychEroc) |