Hello everyone, This is with reference to the following link: http://www.mechbgon.com/build/router.html On that page in the section "Advanced users: locking unnecessary TCP/IP ports completely" the author advises to block all outbound ports except port nos.20,21,25,53,80,110,123,443 so that even if I get infected by a malware it wont be able to "phone home" using a random high numbered destination port. My question is do todays malwares really use those high numbered ports or they use the above unblocked ports to phone home? In case if they do use the above unblocked ports to phone home what can be done to stop them?? Please help Edit: Just found out "83% of all backdoors used by APT attackers are outgoing sessions to TCP port 80 or 443" through this link http://www.coresec.org/2011/07/14/how-to-detect-reverse-https-backdoors/ Does this mean the above mechbgon tip is of no use??