Posted on 2014-08-06
I have another question opened about the firewall in windows 7, and someone responded with an article that describes the fact that blocking outbound connections is just "security theater" meaning that all outbound connection are
allowed, unless it is specifically denied. But even if the out bound connection is denied, the guy who wrote
the article said that a virus, or malware would just take over an existing out bound connection and use it
I thought the best practice was to block everything ( inbound and outbound ) and then allow things as needed. but from reading this article i started wondering if this is just a windows thing, and maybe Linux was different. I'm a fan of Linux but I have to live in a windows world. Being a fan of Linux, I have seen several times that Linux is inherently more secure than windows. Is that true? and if so, is the firewall better in that if you block an outbound connection, it will be blocked and not be "security theater"