Going back to the desktop vs. Fedora, as someone who's now working almost entirely with RH based systems, let me point out that you give up a lot to get that (theoretically) easy to configure desktop.
I say theoretically because Fedora basically throws things in, doesn't document them and they don't work properly for 20-30 percent of the users. (Personally, I think the fact that I've joined the fedora-testing mailling list and nagged about documenting various changes has actually had an effect, though it's quite small).
Then, a few months later, Ubuntu will adapt it too and do a somewhat better job. This is OK--Ubuntu's stated number one bug is that MS is more popular whereas Fedora is a testbed for RH. (One more digression--I don't understand why RH, a server oriented distro, is so darn GUI oriented.)
Anyway, a default Fedora installation will be ready to go as a desktop (hopefully.) However, it's far bigger than a default BSD installation, usually slower and any experienced user has to spend a moderate amount of time turning off services, removing various programs, etc. So, there's always a price.
That's not a putdown of Fedora. One other important conclusion I reached, after finally breaking down and buying a laptop is that it's not only pointless, but actually self-defeating for BSD folks to put down Linux--yeah, Vermaden, that means your sig.
The reason for that is that if I were MS, an evil smile would reach my lips whenever I saw things like that--divide and conquer. The more unity between the non-MS users, the better the chance of reaching enough numbers to influence web site developers for things like banks, the better the chance of having enough influence on hardware manufacturers to have OSS compatible hardware out of the box.
Conversely, with CentOS (based almost entirely on RH Enterprise,) I can type yum -y upgrade, walk away and not worry. I couldn't do portupgrade -Rra and do that. So, there are always pluses and minuses.
Ok, before someone says, "Why would you do portupgrade -a" whether I would or not doesn't matter. The point here again is advantages and disadvantages. That's one of the things I gain by accepting the RH bloat.
In the same way, more or less, that you can use DesktopBSD and quickly have your desktop up and running, but lose some choice during installation. (I mention DesktopBSD specifically because we're fortunate enough to have Oliver here.) There's always a tradeoff between convenience and functionality.
Back to pf--that's something I advocated way back when I wrote my first little pf article--if you're making changes remotely, have a cronjob to disable it shortly in case you lock yourself out. That did save me from a lot of aggravation once, when I forgot to let myself ssh in from work. Oops.
<@andre> i would be so much more efficient if i wasn't so stupid