Open sopla4ever opened 3 years ago
Hi @sopla4ever , thanks! Another very good suggestion to enforce best practices and cheers for putting an effort into writing this in yaml
structure, it helps a lot.
I believe we need more granularity here.. I believe we should categorize rules. Something like:
..bash.exe..
..telnet.exe..
..powershell.exe..
..wordpad.exe..
This way users can choose what to block or not in detail if they want, or as more abstract categories. For example I'd like to block all other services but but keep bash.exe
and curl.exe
unblocked.
Firewall hardening it's something that I believe will need take sometime due the fact, we need take the right ports, and also programs ports to make the hardening easy for any user. Also needs tests in all the popular software to see if we got any problem or it's OK to use.
Example: Block HTTP port, users will not able to access websites that use HTTP so this might get a lot trouble ,because some programs, games use HTTP instead only HTTPS.
But this is a good start :)
Have some time I didn't update the application.yaml and has a reason, I'm testing some configurations and also testing the simplewall (to make the hardening better, sometimes through windows firewall, windows ignore some rules), so I will add the file for simplewall too and the command to download the simplewall through CMD, and the right command to import the configuration in simplewall too :)
@undergroundwires This was removed from 0.11.0, any plans to re-intruduce it on up coming versions?