Ya know, there was a time I would have mentioned a hardware firewall (also keeping in mind that for many home users this might not be a viable option). Perhaps latter in the summer however, I'll have something to add.
Lets just say that I'm taking a network security class right now, and much of what we're doing would amount to hacking (albeit in the network lab's own comps, switches, etc)... This same teacher, I heard one of the people who manage the lab to kindly refrain from crashing the PIX firewall (Cisco's hardware firewall product) that they have in there. She was like "I know you can do it, but I ended up having to spend hours re-building the thing, after you got done with it"
So after we started messing around some (and first up, after having messed with pachet sniffers and port scanners some) seems to be flooding a network switch with spoofed MAC addresses so it crashes to act like one large hub, constructing mal-formed packets of dif types to see what will happen, etc...) The teacher here is of the opinion that until someone has broken something, they really don't know how to fix it, so hacker 101 seems to be at the top of the list :laugh: I asked her if this is where we get to crash the firewall...
Needless to say, given the exploit list they mentioned, by the time semester's up latter in the summer, I might have a slightly different view...especially if we end up doing some stuff to that poor hardware firewall we have sitting in there