As a matter of fact, on my local network, I have no problem leaving inbound connections open as well, because firewalling is provided by my router. When you look at early litterature, a firewall was at first a network configuration, not an application or a kernel module.
That's the whole point
Yes, that`s why distribution now ships with less strict configurations. System daemons are thighly controlled, but end-user stuff is much more relaxed.
Because the malware situation on Windows got out of hand because of poor initial security decisions.
I would also like to say that I spend most of my days writing software that use network connections, so I would constantly be tweeking that damn firewall if I was using this kind off configuration.
Sorry I meant stuff, not stuffed
I have to add that some of this stuffed is handled by SELinux. If you wan't an CGI script to be able to send an email on a Red Hat derivative, you have to explicitly add the rule to your SELinux configuration
You got me there. Those are really convincing arguments. You`re the man!
If you run applications that are included with your distribution, it is pretty safe to assume that they don't have to be blocked. If you run third-party applications, you will probably want to allow them to do their job and let them open wathever outbound connection they want to. Most user will allow anything anyway. Most people don't know enough to be able to decide what to permit.
Ok, seems like you're trying to do things the windows way, i.e. blocking outbound connections based which application is running. Things are not done that way on Linux. Outbound connections are open and most of us are fine with it.
Sorry, no Yoda in episode IV. Yoda appeard in Episode V.
That's exactly what those supercomputer are, Linux clusters.
First Apple product was the Apple computer. They built a better KIM-1 or a cheaper Altair. Next the built the Apple II. Big innovation (from Jobs) was the plastic case. Now they sue someone else for round corners. Yes, the Apple Reality Distortion Field is still working. By the way, I love Woz, he was the real guy.