![](https://seccdn.libravatar.org/avatar/77cb4da5f72bc176182dcc33f03a18f3.jpg?s=120&d=mm&r=g)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Saturday, 2016-04-02 at 16:19 -0400, Anton Aylward wrote:
On 04/02/2016 02:57 PM, Carlos E. R. wrote:
b) is the 'why not' applicable to the host?
Because the entry firewall on most places is in the access router suplied by the ISP, which is not trusty, and is never updated.
Considering that all my network devices are "Closet of Anxiety" grade rejects or stuff my neighbours gave me when they upgraded, I seem to have a much better class of networking gear for asymptotically zero expenditure.
I suffer from zero of the defects you have mentioned.
Perhaps you need to visit a thrift store, Salvation Army store or something. I've got a WRT54G grade device I picked up there for C$3.49 waiting to flash with DD-WRT. I may have to find a way to add more memory, but that's all part of the fun :-)
No salvation army here, AFAIK :-) No, I can not replace the router that the ISP installed on my home, because it is a complex one handling also TV cable service and posible the phone. And its settings are not documented. I think it has some VPN configured for phone and another for TV. So to replace it I can't use a cheap router, for starters. Then I need to setup a complex setup which is unknown to me and many. And then, I would have to cover cases when the ISP changes things. On the original router, they do this remotely. On the new one, no. So I /must/ use the original ISP suplied router, and not change its configuration much. However, the situation is similar to millions of users worldwide: they are using the router suplied to them by the ISP, and these machines are what they are. Maybe no firewall, and most of them get never updates. My current ISP router I know can be automatically updated by my ISP. They can do this massively, but I don't know if they really do so. In any case, I can't really trust the firewall in it. - -- Cheers, Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAlcA/JsACgkQtTMYHG2NR9VlZgCgg/EH0r/Zz36j8PEakArhOieP fTkAnjIXt8pNAwHYuktOa7ZP/rmRIgE5 =dInh -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org