On Sat, May 03, 2008 at 09:38:01PM +1000, Sunnz wrote: > 2008/4/30 macintoshzoom <[EMAIL PROTECTED]>: > > "" > > # block nmap OS detection scans somewhat (-O) > > block in quick proto tcp flags FUP/WEUAPRSF > > block in quick proto tcp flags WEUAPRSF/WEUAPRSF > > block in quick proto tcp flags SRAFU/WEUAPRSF > > block in quick proto tcp flags /WEUAPRSF > > block in quick proto tcp flags SR/SR > > block in quick proto tcp flags SF/SF > > "" > > > > Any tips for a full pf.conf settings ? > > > > Well since the OP wanted to block ALL user agents from absolutely > everywhere and don't mind security by obscurity, may I suggest the > following: > > block in quick all > block out quick all > > That's as secure as you can get by going for obscurity, without > turning off the computer! >
I think unplugging the network cable(s) would be more secure.
