-
@ jared
2025-05-16 21:29:34
Windows firewall is more secure than Linux host firewalls and I will prove it to you.
Take DNS as an example.For DNS to work on any network your device may be on, you must allow DNS out to anywhere (since you don’t know what DNS servers IPs might be used) on TCP and UDP port 53.
On Linux, this includes allowing anything including arbitrary user processes to connect to any destination on port 53 including a possible C2 or exfil channel.
On Windows firewall, this can be restricted to the DNS client process only, adding local privilege escalation as a requirement to establish the same outbound C2/exfil connection.