This seems like woefully naive virtue-signaling to me. I geo-block all traffic from Iran, N Korea, China and Russia specifically at my clients' firewalls because I have watched the logs and could clearly see IPs from each of these countries attempt connections to American businesses every minute of every day. Try to single out the offending IP and tomorrow it moves to another; you will spend the rest of your days adding to that block list. It is perfectly sensible to block the country entirely; and better yet - as I've made a standard for my clients - block the entire world, and only allow specific countries to talk to your firewall. Then you can add more granular blocks on top of this. If something gets blocked that shouldn't, that's not painful to adjust. I have no doubt there are many fine people in Russia, but that doesn't mean there's a single computer in Russia that has any business talking to mine.
Logically, if Russians would want to infiltrate your organization, they won't do it from Russian IPs directly, but instead do it from cheap proxies, and those proxies are abundant in Netherlands or Germany.
Only stuff like scanners and other basic stuff (that comes from devices that have been left unattended and without updates). But the actual malicious traffic is not that easy to spot, as it won't be router directly.
i used to do similar on gaming clans' forums; for local rationalized fps we didnt want folks with 300+ ping and country blocking was pretty easy (and folks on the forums were either spamming us with porn or trying to become a member). though since it was forums based i did allow GETs but restricted POSTs ect vs straight up 0 access
Trump put Elon on stage at rallies over and over, letting all of America know if you vote for Trump, he will hire Elon to run DOGE. They were as open about this as a campaign can possibly be. Then, America overwhelmingly voted to have exactly that. Period. End of story. Cry about it any way you want but this is what the people voted for, this is what the people want. Get over yourself. No one cares about your opinion but you. The people have spoken. Deal with it.
you seem very sure of your declarations here; im not sure you've looked too far beyond your bubble. i have worked within a rational meritocarcy for the past 15 years.
Yes and no. Businesses have cyber insurance policies. In a world of frequent ransomware attacks, many security policy changes have been mandated by insurance companies, and for legitimate reasons.
THIS. I use non standard port for SSH by default and my single SSH config file manages this for me with no extra effort. Seems like a common sense behavior to me.
Perhaps the gatekeepers you describe are the same ones who pushed the term 'piracy' this way; to describe any human who copies chunks of 1s and 0s they feel protective of.
Meanwhile, real pirates really steal real physical goods from real people.
Copiers and pirates are not the same thing, not even close.
