Avast WEBforum
Other => General Topics => Topic started by: Hermite15 on July 05, 2010, 09:11:35 PM
-
thanks to Pondus who let me know about it ;) anyway doesn't really matter much to me as I only run CIS firewall with Def+ (including the sandbox now) and AV of course completely deactivated. But that's interesting. What would interest me more is how Avast sandbox would have resisted...
http://malwareresearchgroup.com/?p=1715
http://www.youtube.com/watch?v=4AYeIDI4CB4&feature=player_embedded
-
What's Comodo's reaction to this breach ???
I guess we'll soon see what they have to say:
http://forums.comodo.com/melihs-corner-ceo-talkdiscussionsblog/rogue-anti-virus-products-t37547.0.html;msg412702#msg412702 (http://forums.comodo.com/melihs-corner-ceo-talkdiscussionsblog/rogue-anti-virus-products-t37547.0.html;msg412702#msg412702)
-
Melih will accuse other security companies and tell us that comodo is the best there was and the best now and the best there will be
-
Melih will accuse other security companies and tell us that comodo is the best there was and the best now and the best there will be
for once I agree with you (yes ;D ) that's exactly what they will do + they will accuse the tester (from malware research group) of doing things the wrong way.
Expecting reactions after Bob's post there ;D
-
Hi Logos,
Well it is just as with everything, you have the optimist, that reacts to bob's posting like I quote from there: I'm sure it'll be fixed soon. I also wouldn't mind a comment from the Staff to confirm my suspicions.
I wonder how long that will be there, I know Comodo does not like to welcome critical opinion.
All that is coded, bob told me once, can be uncoded, by-passed, developers have to invest time in finding those holes and exploitable code bits, if the malcreants cannot break it as a whole, they do it in parts, this is so for all code, and this is for all software as long as a machine can render more efficiently as the coder's brains, we stay in this rat hole, my friends, tails knit firmly together...
polonus
-
okay but here we got two problems, not just one:
1 this rogue was known by Comodo and they updated their software (so they say...) to catch it and not be vulnerable to it anymore.
2 the same rogue now is able to bypass their sandbox, completely uninstall Comodo, and install itself after a reboot. Worse scenario one can imagine.
-
Hi Logos,
You know how the Mod replied: MRG, yes. Comodo is fully aware of this.
.
polonus
-
I and others told them from the beginning that things could jump out of the sandbox and at first they denied it and then claimed it was fixed in 4.1. I guess it wasn't ;)
-
I and others told them from the beginning that things could jump out of the sandbox and at first they denied it and then claimed it was fixed in 4.1. I guess it wasn't ;)
Happy to be Comodo free. ;)
Comodo + fake meds
Seems Comodo still aren't bothering to check who they're supplying SSL certificates to. Nice to know they give a damn isn't it.
http://hphosts.blogspot.com/2010/06/comodo-fake-meds.html
-
Hi Logos,
You know how the Mod replied: MRG, yes. Comodo is fully aware of this.
.
polonus
Damien,
Up till now, the Mod hasn't replied to my post.
The only reply has been from a user and he would also like a reply from Comodo.
-
Look like i do good great for stay away of Comodo. ;D
I hear a War that start soon. Comodo vs MRG or maybe Users vs Comodo.
lol....
Lucky Comodo he thinked to got a product of high quality. Look like no also the version was Premium im sure they will say the Complete would have block it lol.
-
It's being discussed here:
http://forums.comodo.com/news-announcements-feedback-cis/another-mrg-video-t58497.0.html
-
Comodo + fake meds
Seems Comodo still aren't bothering to check who they're supplying SSL certificates to. Nice to know they give a damn isn't it.
http://hphosts.blogspot.com/2010/06/comodo-fake-meds.html
[/quote] This certificate problem is not unique to Comodo. All of the vendors have had the same things happen.
-
Comodo + fake meds
Seems Comodo still aren't bothering to check who they're supplying SSL certificates to. Nice to know they give a damn isn't it.
http://hphosts.blogspot.com/2010/06/comodo-fake-meds.html
This certificate problem is not unique to Comodo. All of the vendors have had the same things happen.
[/quote]
true, we've been through that before, Verisign etc...they've all done that unfortunately, whether they were tricked or not is another topic. Yokenny posted in the thread I started about that here, I was blaming myself Comodo and after collecting more info, I posted additional links, that might have included that one:
http://www.ccssforum.org/malware-certificates.php
Yokenny must have read that, but he had to post his link again ::) ...of course :D You know what Yokenny, you're just like Comodo, you're no better then they are...you could work for them ;) may be they're hiring ??? ;D
Back to topic: in the the thread Tech linked to, they're indeed as predicted (was actually posted before my thread here but I didn't know it) doing their best to attack the method. Comodo as usual won't recognize anything, marking their difference here with other companies, especially Avast. I mean I've seen Avast recognize flaws or mistakes several times, Comodo never. For Comodo, a tester proving that Comodo has a flaw is a criminal and a malware provider himself ;D
-
Maybe they will push an update soon :P
-
Hi folks,
I do not feel sorry now I took this CPU-hog off of my comp, Comodo has not given me the right user experience,
sorry, not for me...
polonus
-
Hi folks,
I do not feel sorry now I took this CPU-hog off of my comp, Comodo has not given me the right user experience,
sorry, not for me...
polonus
Hi D. !!
Are you talking about the sandbox, the firewall or the whole suite..?
asyn
Btw: Go Holland..!! :)
-
the firewall and the HIPS there are definitely to separate from all the rest, i.e. all the crap they provide (you know, stickers, cups, flags etc... ;D ) but it's getting harder and harder to dissociate even the very few good products from the company producing them and their behavior. I wanted to ditch CIS for ages, I did, and I'm using the firewall again..will be like that as long as I don't find an equivalent.
-
I was shocked by the video.It s amazing how Comodo stood still when it was beeing flushed from the system.The example is with a rougue but lets think further ,what if the thing that "uninstalls" Comodo installs something invisible ?! :)
Having in mind many users install Comodo for the firewall components only i m wondering if the same file can "uninstall" Comodo when runned normal not sandboxed.
Many users do P2P to download "stuff" ,if this stuff is upgraded with this thingy we can conclude many users may be left without firewall protection in no time maybe even not knowing.
At this moment i stopped trusting Comodo totally.
Practically Comodo self protection is NULL.
So many questions when you use it and when something unistalls it completelly it stayes sillent like a dead fish.
-
At this moment i stopped trusting Comodo totally.
Practically Comodo self protection is NULL.
Will you do the same when avast miss a virus that infect your computer?
Or when avast gives you a BSOD or you can't login?
Besides high temperature discussion about Comodo, they are working on a solution (maybe a captcha or other security lock for uninstallation). Indeed, a huge problem.
-
I ve lost my trust in BitDefender during a year or so after seeing instability ,BSOD -s ,lock-ups , HDD corruption while using it and observing the inability of fixing the issues from the BD coders.I dont know how BitDefender works at this moment ,maybe they fixed their issues ,but I ll stay away from iit at least 1 year.I never had infections with it.
If a similar thingy happens with Avast i ll do the same.I m refering to annoying issues which Avast team is not able to fix in time .Keep in mind i had a 1 year license for BD and i simply stopped using it and as you know it s not a free AV.
Anyway I m using Avast for maybe 2 years and a half now and i dont think i ll see it beeing uninstalled silently.Avast 5 is already a mature product thing i cant say about Comodo 4.The Avast team do fix issues faster than BD team ,better feedback and support in my point of view.
In Comodo case they already struggle with this vulnerability for some time now and they ve said they fix it.Now looking at the video we can see they didn t :)
Comodo is the software that is known for the huge number of pop-ups and seeing it now that it was silent when beeing "done" maliciously surprized me.It was also always considered the best and we can see it failing in protecting it s own files.
If i use sandboxie + a HIPS ,which Comodo tryed to integrate in CIS 4 ,i will get pop ups from the HIPS when something tryes to get out of Sandboxie.Another question is why at default Comodo did not asked nothing ,this is what i see in the video.
One of the features I look for at a security software is the self protection ,Comodo failed .
Another feature is the ability of the coding team to solve problems fast ,the vulnerability was known ,they said it s fixed ,we can see it s not.2 elements that broke my trust in Comodo.
Remember we are talking about security software where any minute counts .We also know rogue is the fastest changing thingy on the internets.You can t wait days for something like this to get fixed.
Someone that uses W7 can simply activate the build in firewall and personally and manually uninstall Comodo before it gets uninstalled by something else.
-
Avast 5 is already a mature product thing i cant say about Comodo 4.
I'm not comparing the two softwares and, indeed, they seem to be in different stage of development.
Another question is why at default Comodo did not asked nothing ,this is what i see in the video.
There are two long threads at Comodo forum where the CEO answer what happened.
One of the features I look for at a security software is the self protection ,Comodo failed .
For sure, it needs improvements.
Another feature is the ability of the coding team to solve problems fast ,the vulnerability was known ,they said it s fixed ,we can see it s not.2 elements that broke my trust in Comodo.
I'm fighting against lack of support all the time. There and also here. There are some threads of mine that was never answered by avast team... they just died...
-
LOL : http://forums.comodo.com/news-announcements-feedback-cis/test-with-comodo-bypassed-t59176.15.html
So Tech ,do you still trust a "sandbox" that it s not a sandbox :)
Is it an advertising thingy that Comodo has a sandbox ??
Practically when i surf i use a sandbox exactly for the temp files so they stay in the sandbox ,to clear them on exit.That is the main purpose of a sandbox ,to protect the websurfing .Comodo is not able to provide that and even worse it brakes you PC security with vulnerabilities it brings.
Or maybe i m wrong.
-
So Tech ,do you still trust a "sandbox" that it s not a sandbox :)
I'm not an expert on sandboxing. I won't jump to conclusions without knowledge, I usually don't do that.
That is the main purpose of a sandbox
Not if it is used in a default deny protection scheme.
Protect the websurfing is for antivirus (default allow).
Comodo is not able to provide that and even worse it brakes you PC security with vulnerabilities it brings.
What about avast vulnerabilities?
And recent bugs?
http://forum.avast.com/index.php?topic=58954.0
http://forum.avast.com/index.php?topic=61741.0
http://forum.avast.com/index.php?topic=61745.0
I believe in software development. Try to keep myself open minded.
Please, do not take any comment as personal. They're my opinion.