A firewall protects your computer against unwanted guests from the Internet. But who protects your private data from being sent out? Little Snitch does. Little Snitch informs you whenever a program attempts to establish an outgoing Internet connection. You can then choose to allow or deny this connection, or define a rule how to handle similar, future connection attempts. This reliably prevents private data from being sent out without your knowledge. Little Snitch runs inconspicuously in the background and it can also detect network related activity of viruses, trojans and other malware.
What is new in this release:
- Fixed a kernel panic introduced in Little Snitch 4.0.4 that would occur when a single process established more than two billion outgoing connections.
- Fixed multiple issues causing a Connection Alert indicating an internal error related to a code signature mismatch from being shown.
- Fixed an issue where scrolling in Little Snitch Network Monitor's inspector would not work.
- Fixed incorrect sorting of Time Machine Backups in Little Snitch Configuration's "Import from Backup..." sheet.
- The Connection Alert now points out if a connection is to or from the local network and offers a new option to create a rule for "Only local network". Creating such a rule was possible in Little Snitch Configuration, but now you can do this in the Connection Alert, too.
- For hostnames that end in .local, the Connection Alert will now create host rules, not domain rules. These rules worked as intended, but it makes more sense to create host rules instead.
- A Connection Alert informing about a code signature mismatch is now shown even if Silent Mode is active. This is to prevent processes with an invalid code signature from communicating even in Silent Mode.
- If an app changes its bundle identifier in an update, Little Snitch will update any existing rules for that app if the new version is located at the same path and is signed by the same developer. Previously, a Connection Alert indicating a code signature mismatch was shown.
- Improved a button label in Connection Alert in case of a code signature mismatch to avoid possible confusion. Previously, it read "Require New Code Signature..." and now it's "Accept New Code Signature...".
- Improved alert when macOS blocks Little Snitch's kernel extension from being loaded. In addition to opening the "Security & Privacy" preferences panel, it also switches to the "General" tab, where it must be allowed.
- Prevented multiple notifications about incoming connections from the local network to processes without a code signature being shown. Details: In earlier versions, if "Ignore code signature for local network connections" was enabled (in Little Snitch Configuration > Preferences > Security), an allow rule for only the specific IP address of the connecting peer was created and a notification was shown each time this happened. With this change, an allow rule for any incoming connection for the local network will be created and only a single notification will be shown. Note that this does not change what connections are accepted, only how many notifications are shown.
- Improved performance when duplicating a large number of rules in Little Snitch Configuration.
- Double-clicking an unapproved rule in Little Snitch Configuration to show the rule inspector now only approves the rule if the inspector is closed with the "OK" button, not with the "Cancel" button.
- Fixed Little Snitch Network Monitor sometimes showing incorrect hostnames for incoming UDP data. Note that only the names shown were incorrect - the network filter and rules were not affected by this.
Internet Access Policy
- Developers can now specify their name that will be shown to users as the source of the IAP information. Previous versions of Little Snitch used the name as defined in the code signing certificate, but this does not work for apps downloaded from the App Store. See the specification of keys for details.
- If the developer's name is read from the app's code signing certificate, Little Snitch now shows the name without the country. For example, it's now "Objective Development", not "Objective Development, AT".
- Added support for Internet Access Policy files written in JSON format (in addition to the Property List format). See section File format for more information.
- Added support for Internet Access Policy files embedded in XPC services. See the section Support for XPC services in the developer documentation for details.
- Fixed an issue where developers testing the Internet Access Policy in their apps would not see up-to-date information in Little Snitch, specifically in localizations. Cache invalidation is hard.
What is new in version 4.0.4:
- Little Snitch now includes Internet Access Policies for several Apple processes shipped with macOS.
- Fixed an issue with localized IAP files.
- Added support for Markdown-style links.
What is new in version 4.0.3:
- Added preferences option for showing data rates either in Bytes/s or Bits/s.
- More prominent indication if a filter is currently active.
- Added support for full screen mode.
What is new in version 4.0.2:
- Fixed a rare kernel panic that could happen when a process terminated while a Connection Alert for an incoming TCP connection for that process was shown.
- Fixed an incorrect notification about "Simulated Input from Little Snitch Agent".
What is new in version 3.5.2:
- Refined some icons to better match the look of OS X Yosemite.
- When using OS X Mavericks (10.9) or later, Little Snitch Agent, Network Monitor, and Configuration should not cause the discrete GPU ("High Performance GPU") to be activated anymore, especially on Mid 2010 MacBook Pro.
- Fixed: In Little Snitch Configuration, when pressing while no rule was selected, the last rule was selected.
- Fixed spontaneous horizontal scrolling of text in the Connection Inspector window of Network Monitor.
- Fixed: Closing the Connection Inspector window did not preserve its position on screen.
What is new in version 184.108.40.20633:
- Fixed an issue causing a first time installation of Little Snitch to hang under rare circumstances when attempting to restart the computer.
- Refined appearance in configuration UI to better match the look of OS X Yosemite.
- Improved user experience when a connection attempt was automatically confirmed after a timeout.
- Fixed an issue in Network Monitor causing the destination of a connection to be wrongly shown as "0 Servers".
- Improved compatibility with Xcode Server.
What is new in version 220.127.116.1131:
- Greatly improved support for iOS Simulator apps in Connection Alerts, Network Monitor and Configuration. Read our blog post for details on how iOS Simulator apps are now handled in Little Snitch.
- Added support for showing iOS App Extension icons.
- Improved handling of via connections:
- Connection alerts now show a cancel button if either the parent or the via process is terminated.
- Until Quit rules are now valid until both the parent process and via process have terminated.
- OS X Yosemite changed how incoming ssh connections are handled. Incoming connections are no longer handled by sshd directly but instead by launchd. On OS X Yosemite, this version of Little Snitch automatically converts existing rules to ensure incoming SSH connections work as expected.
- Little Snitch menubar item no longer occupies space when disabled.
- Fixed: The process owner in Network Monitor Snapshots was "root" instead of the actual user in many cases. Snapshots now store the user's names and show them correctly.
- Software update checks are now using HTTPS. We will gradually enable HTTPS for all other connections to our servers in the near future.
What is new in version 3.4.2:
- Fixed: Connection alert occasionally no longer appears after using the Research Assistant.
- Updating Little Snitch prior to upgrading to OS X Yosemite is recommended.