Security-problem with Comodo´s firewall & Defence+ !

hackerman1 · 25 May 2010

hi !

there seems to be a really BIG Security-problem with Comodo´s Firewall & Defence+.

last night i when running Comodo´s Leak-Test (CLT) i discovered that it´s NOT working as it should & as it used to do.
i only got 180 / 340 points !

OMG...

a complete disaster, although a-squared (now EAM) did a good job,
and detected 5 suspected activities that Comodo missed.

last time i checked with CLT i got 340/340, so there must be some problems.

last night i spent an hour checking all my settings & trying to improve the security, but nothing i did helped.
i´ve been working a few hours now, trying everything possible, but it´s still 180/340.

so if you are using Comodo´s Firewall & Defence+, the latest version 4.0.141842.828 from 12 April 2010, then i strongly suggest that you run CLT and check your own results !

i´m using Online Armor FREE now and i got 330/340 when running CLT.

i previously used W7-beta, W7-RC & W7-Professional, when i tested Comodo with CLT.
now i´m running W7-Enterprise 32-bit, but i also have both Vista & Windows Server 2008 installed, so i´m going to install Comodo on those 2 O/S´s just to verify that it isn´t W7-Enterprise that is acting weird.

Corrine · 25 May 2010

Wow! Coming from a "devout" Comodo fan, this is something.

hackerman1 · 25 May 2010

well, if Comodo doesn´t provide the security, then it´s time to switch to something else....

i just checked my old emails, i seem to have licenses for both Online Armor Premium &
Online Armor ++.

OA++ = OA-premium & a-squared.

hmmm....

seag33k · 25 May 2010

I wonder what changed with Comodo? I am a new users of comodo so I have no point of reference. I may try the OA though. I was figuring out how to use Comodo though :) This could become a very time consuming experience chasing the holy grail of firewalls. I can already see OA or any other vendor making what ever mistake Comodo made and then jumping vendor to vendor.

polarbear · 25 May 2010

TY hackerman1 for the great post... :)

I see they are also testing a beta system for the 64 bit windows7 users... will wait for the outcome... :)

seag33k · 25 May 2010

polarbear said:

TY hackerman1 for the great post... :)

I see they are also testing a beta system for the 64 bit windows7 users... will wait for the outcome... :)

Are you referring to Comodo?

Nem · 25 May 2010

After fiddling with the settings after my outcome kept getting 220 i now get 340 with Comodo.

...Keep failing COAT. :|

seag33k · 25 May 2010

Nem said:

After fiddling with the settings after my outcome kept getting 220 i now get 340 with Comodo.

...Keep failing COAT. :|

Care to share what settings you fiddled with? For me this is a learning experience of the various software firewalls out there and how well they do what they claim.

Nem · 25 May 2010

Yeah sure no prob.

Firewall:
Safe Mode
Everything under advance tab in "Firewall Behavior Settings" checked
Stealth Ports set to "Block All Incoming Connections..."
------------------------------------------------------

Defense+
Safe Mode
On Common Tasks Tab -> "My Protected Files" i added the Executables File Group.
SandBox Default Settings.

Advance Tab -> Image Exeution Control Settings.. is on Normal, Detect Shellcode Injections.. Checked
Everything else Default.

Oh and my config is set to Proactive Security.

malexous · 25 May 2010

Comodo have too many bad practices for me to ever use them again. It's a shame as some of their products are good.

Online Armor is an excellent alternative.