On Thu, Feb 14, 2013 at 04:20:30PM -0700, Daniel Bertrand wrote: > Hello, > > Thanks for providing such great software. It really is much appreciated. > > I was wondering what your stance is about the constant hack attempts on > machines on our ISP networks.. > > I see CONSTANT scanning for ports from all over the world, mostly from Italy, > Russia, and China.
yeah i see this daily. doesn't matter, they never get anywhere. > Every firewall/router product that I have purchased has been compromised so > far. > > Is there really a secure, trustworthy adaptive filtering firewall > configuration for each OS configuration out there? > learning the pf ruleset and configuring to your needs seems to work pretty well. > Most people who are on the net are completely oblivious and helpless when it > comes to this constant trolling for access, they have no idea what to do to > secure their machines. > > Shaw has neglected me and left me for dead when I ask for better control and > protection from malicious attackers. you want the isp selectively blocking traffic for you? i don't. > What do I do to make sure I don't spend money on new hardware but get a PF > configuration that I can trust besides "block in all"? > > Are there published rulesets for Mac/Windows etc. that we can just drop into > our pf.conf and /etc/pf.anchors/ directory? it sounds like you just want a magic working result from no real effort. maybe thats why your purchased firewalls didn't work out, you bought them, drop them in and expect it to just take care of issues regardless of user activity? shrug, sounds like a case of i don't want to do the work but i'm sure someone else does it for me, not really gonna get anywhere. > > Regards, > > Dan >
