Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It's used like that because for a long time that approach worked. Users are terrible at securing their own machines and will click yes on anything just to get a thing they want and so putting stateful firewall allowing only outgoing connections was very effective measure.

Much less relevant when now even windows comes with half decent, reasonable default firewall out of the box. Then again "user clicking allow button till it works" is still a problem.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: