DosFreak wrote:Most home routers just block inbound not outbound. I use my SG-1100 to only allow specific outbound traffic and any outbound traffic can only go over the VPN except for traffic I specifically route over the WAN.
Most outbound traffic is considered legitimated as initiated either by the user or by applications the user has allowed to install. Of course this fails if the user has been duped to allowed malware to install itself, or some particularly clever one managed to do it without consent. This can happen but pretty rare among people who know what they are doing.
Your approach is more secure, for sure, and I know people who use it. Not sure how it affects day-to-day usage of the web, but maybe I should try it myself one day.
BushLin wrote:Microsoft don't release security updates for fun, they create patches as vulnerabilities are discovered and stopped providing this service to regular XP users 5 years ago.
Really? Check DosFreak's post 2 above yours.
BushLin wrote:I've seen infected XP systems which visited a mainstream website where malware was contained in the adverts
You tell people not to use XP, but think it's OK to surf the web without an ad-blocker? I'm genuinely shocked.
BushLin wrote:people nonchalantly using vulnerable systems make their internal networks and the internet at large more dangerous for everyone else
According to your theory, running a "supported" OS automatically makes you safe, no? So what's the problem? As for the safety of my own personal network, let it be my headache, not yours.
BushLin wrote:How are you certain you've never been infected with malware/viruses/trojans?
Are you watching all outbound traffic and fully understand what is creating it?
Well, I hope he has better things to do with his time than constantly watch all outbound traffic on his computer. But I suppose that you've been doing exactly that (monitoring and fully understanding all inbound and outbound traffic to all your systems?) Otherwise how can you be sure you were not infected? Surely there are 0-day exploits out there that are unpatched even on the newest OS.
https://cloakedthargoid.wordpress.com/ - Random content on hardware, software, games and toys