OK, for surfing you don't need to open port 80/TCP incoming. The system will choose a random high port (>1024) for communication going
out to the HTTP port, and others. Besides, hardening a system doesn't stop at configuring your firewall.
As for that site: I wouldn't trust them further than I could throw them.
- Their freeware for Windows is just a collection of registry fixes or disabling services (which is easy to do yourself).
- Their main product, Spin Right, was reviewed by an MBA, which doesn't exactly fill me with confidence that he grasped the finer points of data recovery.
- The product description itself makes me doubt they grasped the concept of magnetic storage (in case anyone of them reads this: ever heard of CRC?)
- In their "research" about NAT they claim that NAT adds security to a network because it hides the IPs behind it, which is, excuse my language, BS.