DonnaB
Premium
join:2003-05-07
malaysia
| reply to EGeezer
Re: A basic flaw in X.509?
Right. There's weakness about certificates and I'm sure we've seen other demos how bad guys will misuse a cert/validation -- extended or not (thanks BTW for those links).
If only they just acknowledged the alert, took action... there'll be no additional controversy on their services. And as already mentioned in other post in this thread, they have security software for end-users to at least, another means to protect end-users privacy and security.
Been visiting buy and download links but CIS is still quiet on my downloads. Anyhoo, just another experience on another desktop AV software I guess 
Regards,
Donna |
|
dvd536
as Mr. Pink as they come
Premium
join:2001-04-27
Phoenix, AZ
| reply to sivran
Re: Comodo continues to issue certificates to known Malware
said by sivran  :Hmmm. I'm beginning to eye my Comodo Firewall with suspicion. While it may be perfectly fine, I don't really trust the company, or their certs. Exactly why i'm kicking boclean to the curb when it craps out and i was a paid customer back when boclean was good.
--
When I gez aju zavateh na nalechoo more new yonooz tonigh molinigh - Ken Lee |
|
Nikolai
|  reply to hayc59
I want someone to provide proof of a compromised computer that has/had CIS running. Personally I had multiple (total of 12 workstations) running CIS (Firewall + Defense Plus) for the last couple of years with no issues. They run online financial data 24/7 with no compromise of security and/or data theft. Seems that non-granted paranoia is wide spread in this forum. |
|
sivran
Long Live The Suite
Premium
join:2003-09-15
Arlington, TX
clubs:
 ·RoadRunner Cable
| reply to Grail Knight
said by Grail Knight :I will still use Comodo Firewall until it is proven that there is something amiss w/ it. I can think of numerous companies where one part or division screws up well the rest of the companies cranks out excellent products. I realize that. Office 2007 is fairly nice (IMO, anyway), while Windows Vista is nigh intolerable (IMO). Even in Comodo's case, the firewall's pretty good, but their anti-virus is absolutely horrible.
But, shouldn't there also be a trust between the user of a product and the vendor?
I wonder how many with AIG insurance switched to another provider, despite the fact that the insurance division is wholly separate from the much-smaller financial products division.
--
The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no warrants shall issue, but upon profitable cause... |
|
Grail Knight
Who Dares Wins
Premium
join:2003-05-31
 ·Verizon Online DSL
| Of course there should be a trust.
I trust Comodo's firewall but not their AV. I let Avast handle that side of security.
This is a world full of companies and individuals that do well in one area and fail miserably in other areas. The key is to be able to distinguish between the two.
--
“Facts not FUD." |
|
DigitalBizPerp
@rr.com
| reply to Daniel
Re: A basic flaw in X.509?
I'm not sure I'd add to X.509, but certainly having a
"digital business bureau" that can attest to good business practices would be helpful.
If a CA is found to be untrustworthy, then I remove them from my root CA list. So far, only COMODO has left the building.
For example, as of 2007/2008 VONAGE is no longer a BBB member due to multiple unresolved complaints. But there seems to be no technical/automated mechanism for checking a domain name against BBB membership (or i'd have seen a browser add-on already, wouldn't I?)
I'd be far more likely to trust a business certified by two CAs in different jurisdictions than one that was only certified by
Verisign, for example. |
|
hayc59
VoodooChild
Premium
join:2001-02-26
David R.I.P.
| reply to hayc59
Re: Comodo continues to issue certificates to known Malware
Criminals using Comodo to attempt legitimacy
For most of this month there has been a discussion over the business practices of Comodo, the company who along with free security software offers SSL certificates for online businesses. The discussion is not that they offer SSL certificates, it is that they offer them to criminals as well as legit businesses, with little to no checks during the process or once the certificate is in place. Most were unhappy that it took Comodo so long to respond to the issue itself.
»www.thetechherald.com/article.ph···gitimacy
--
ãrê ¥Øu êxpêriêncêD
Microsoft® MVP Consumer Security 2007-09
"Greater love has no one than this, that he lay down his life for his friends."
9/11/01 Never Forget |
|
