Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

What about firewalling? Do you know if there is a way to setup a system wide firewall that doesn’t exclude Apple processes?


The PF (BSD Packet Filter) firewall built into Mac OS covers apple processes. However, I don't think its interfaces are sufficient to implement the functionality of Little Snitch. The new-ish NEFilterDataProvider API used by Little Snitch on Big Sur is neutered by allowing Apple apps to bypass it.


Apple apps bypassing NEFilterDataProvider on macOS is a bug.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: