2008/4/30 macintoshzoom <[EMAIL PROTECTED]>: > "" > # block nmap OS detection scans somewhat (-O) > block in quick proto tcp flags FUP/WEUAPRSF > block in quick proto tcp flags WEUAPRSF/WEUAPRSF > block in quick proto tcp flags SRAFU/WEUAPRSF > block in quick proto tcp flags /WEUAPRSF > block in quick proto tcp flags SR/SR > block in quick proto tcp flags SF/SF > "" > > Any tips for a full pf.conf settings ? >
Well since the OP wanted to block ALL user agents from absolutely everywhere and don't mind security by obscurity, may I suggest the following: block in quick all block out quick all That's as secure as you can get by going for obscurity, without turning off the computer!
