Good, because this thread is about firewalls.
Secure by default is great and I love it. However, it only means you have to do less to harden the OS before you start using it.
It's a term that only covers the very beginning of security, and doesn't mean you're secure tomorrow when you install additional software/services, have to install patches, determine what action to take after getting a security warning in FireFox/NoScript, back up your important data, choose strong passwords for websites, etc. Secure by default is a small part of security, and it has an increasingly smaller impact on security as time goes by.
Even if you don't have any services you can still get hacked through a client side vulnerability. That's why you need to keep things like your browser updated and use NoScript, etc.
Bookmarks