Comment by Dylan16807
2 days ago
Since we're talking about programs that are trying to set up a connection no matter what, I'm going to say "not much". It's not significantly shrinking the attack surface and forcing attackers onto a plan B that's meaningfully harder to do. It just adds this layer of awkwardness to everything, and attackers shrug and adapt.
You block inbound to block inbound. Of course it doesn’t do anything for outbound. Acting like you can just turn inbound filtering off because of that is disingenuous.
Nobody suggested "just turn inbound filtering off"?? We're talking about an alternate universe of program design.
And we're talking about malware in general, not inbound or outbound specifically.