> As the use of "Any remote host" can make the system open to the internet depending on the actual rule used
If this only affects Outbound connections, as the examples you quoted show, then where is the risk? As far as I remember F-Secure PSB's default workstion profile actually allows all outbound connections going to all addresses.
Since this problem was centrally created, it should be fixed centrally and the PSB "Security as a Service" is about automation. I feel bad about the issue being shoveled onto end users. It would be better to set the missing /0 centrally and provide the affected customers with a po-up warning / explanation upon PSB portal account login.
Thanks for your attention, Best Regards:
Tamas Feher, Hungary.