Hello everyone,
We are excited to inform you that we are planning to have new releases scheduled to go live on Saturday (2019-07-13) morning!
The release is expected to take 30 minutes to deploy, during that time platform will be under maintenance mode. Post-deployment tests are expected to continue until 2 pm EST during which you may observe minor glitches. If you observe any issues, please feel free to share with us.
Comodo Client Security
Windows
New Features
‘Virtual Desktop only’ mode
As mentioned in the Endpoint Manager section earlier, we have added the ability to show only virtual desktop options when users click the Comodo Client Security tray icon on an endpoint.
When enabled in a profile, Comodo Client Security will only show these two items when you click the tray icon:
- Run Virtual Desktop - Opens the Virtual Desktop
- Open Virtual Desktop Settings – Opens the Virtual Desktop settings area in Comodo Client Security
Improved password policy for the Virtual Desktop
Admins can prevent end-users from accessing the local computer by setting an ‘exit’ password on the Virtual Desktop. Once set, users will need to enter the password if they want to switch from the virtual environment to the local environment. We added the following settings to improve the security of this password:
- 90-day validity period. The exit password will expire, and must be changed, after 90 days.
- Password complexity requirements. Passwords must now be 8-16 characters and contain a mix of upper case letters, lower case letters, numbers, and special characters.
Added a default containment rule that prevents the installation of msi packages via a URL in a command line. This feature is tightly coupled with Script Analysis as it will be detected in the list of enabled interpreters.
Virtualization exclusions for removable media.
Under default conditions, apps in the virtual desktop write to a virtual file system, and cannot save changes to the host or any peripherals. As covered earlier, you can now create exceptions to this rule for specific removable media. Creating such an exception allows users to more easily export data from the virtual desktop to USB sticks, external storage drives, or CD/DVD.
Extended Virtual Desktop Logs
Virtual desktop logs have been moved out of the ‘Containment Logs’ section and now have their own section. This improves log visibility and makes it easier to conduct investigations, analysis and forensics.
Bug Fixes
- Fixed the issue of aborted AV Full Scans
- Fixed the issue of adding timeout value in the duration of Virtual Desktop session
- Fixed the issue of internal process crashes
- Fixed the issue of twitching Comodo Client Security icon
- Fixed the issue of service crashes on Windows Server 2012
New Features
Disable real time scans on network items
Real time virus scans are now optional for items on shared network drives. This can improve performance by eliminating needless scans on write-restricted files. If an endpoint does not have the rights to delete/quarantine files in a shared folder anyway, then there is little reason to scan them at this point. Any files copied to the endpoint will, of course, still be scanned locally.
Linux
New Features
External Device Control logs
We added event logs for the USB control rule. The rule allows admins to block the use of USB devices on Linux endpoints. The new logs let you analyze events where there was an attempted breach of the rule.
Bug Fixes
- Fixed the issue of requesting password on scan initiation attempt