General discussion

Comodo continue to to issue certificates to known Malware

What's the use of reporting to Comodo if they will ask the alerter on security/privacy issue to shut-up? And why give email address in the first place to report problems on certificates issued to known malware/rogue by Comodo?

Author of MVPS Hosts file and a Microsoft MVP Mike Burgess was asked "to keep quiet about the Comodo certificates issued by Comodo to known malware creators or distributors."

More at http://msmvps.com/blogs/hostsnews/archive/2009/05/16/1692519.aspx

Discussion is locked
Follow
Reply to: Comodo continue to to issue certificates to known Malware
PLEASE NOTE: Do not post advertisements, offensive materials, profanity, or personal attacks. Please remember to be considerate of other members. If you are new to the CNET Forums, please read our CNET Forums FAQ. All submitted content is subject to our Terms of Use.
Reporting: Comodo continue to to issue certificates to known Malware
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Comments
- Collapse -
Thanks, Donna! I Would Have

never found this info on my own!! Love Sandy

- Collapse -
You're welcome, Sandy.

We got to subscribe to many RSS feeds to get important info like the above Happy

- Collapse -
so what to do?

Should I find another firewall then comodo firewall which has worked good? ( can i trust it anymore? )

Should I remove comodo from trusted TTS/SSL certs due to the fact they are no longer trustworthy?

Any Idea cause this has got me worried now.. I don't need the chinese post office doing stuff like this. ( See Security Now Podcast hehe)

- Collapse -
You can...

try free Outpost and Online Armor which have HIPS. One member at Calendar of Updates forum have compared the HIPS protection by software firewall of Comodo, Outpost and Online Armor. It seems Outpost and OA is better than Comodo:
http://www.calendarofupdates.com/updates/index.php?showtopic=19143

I personally use Outpost and have OA on a Vista test sytem. Both are light to use and doing what it should do to firewall something. And their installer don't come with "free unwanted add-on, Ask.com Search Assistant or Ask.com Toolbar".

>>Should I remove comodo from trusted TTS/SSL certs due to the fact they are no longer trustworthy?
I have configured the browsers to warn me if the cert is issued by untrusted authority. You can also delete it, if you like.

- Collapse -
Comodo again
- Collapse -
Criminals using Comodo to attempt legitimacy

The ten thousand dollar question, which no one asked of Mr. Abdulhayoglu, was why Comodo offers DV certificates free for 90-days.

“A free SSL certificate will secure your site and begin building trust,” Comodo’s site states, adding that a free SSL certificate is, “the same as our paid Essential SSL” They even promise no, “faxes, no paperwork and no delays - get the golden padlock within minutes and be ready to sell online.” How is this not making an offer to encrypt data for a recipient you have not verified?

http://www.thetechherald.com/article.php/200922/3750/Criminals-using-Comodo-to-attempt-legitimacy

- Collapse -
BEWARE: Microsoft strikes again

If you have installed the latest update from Microsoft, or if you let them do it to you, you now have all 9 (i think) Comodo Certs re-installed. What's more, only one Comodo CA shows up in the certificate manager mmc....which i promptly deleted.

CNET Forums