New To Mac-Forums?

Welcome to our community! Join the discussion today by registering your FREE account. If you have any problems with the registration process, please contact us!

Get your questions answered by community gurus Advice and insight from world-class Apple enthusiasts Exclusive access to members-only contests, giveaways and deals

Join today!

 
Start a Discussion
 

Mac-Forums Brief

Subscribe to Mac-Forums Brief to receive special offers from Mac-Forums partners and sponsors

Join the conversation RSS
OS X - Apps and Games Discussion of applications and games available for Mac OS X.

is little snitch good?


Post Reply New Thread Subscribe

 
Thread Tools
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
I have a mac book pro that I bought a few months ago. I could not find sufficient info about little snitch.Will the product slow my computer down? how will I know if someone is trying for an outgoing connection.I have a master and a user password and macs firewall on.
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
I read somewhere that applications with root privileges can run around little snitch.Is that true?
QUOTE Thanks
Raz0rEdge

 
Raz0rEdge's Avatar
 
Member Since: Jul 17, 2009
Location: MA
Posts: 7,600
Raz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant future
Mac Specs: 27" i7 iMac, 24" iMac, 13" Macbook Air, iPhone 5 & 5S, iPod Nano 7th Gen, iPad 2 16GB WiFi, iPad 3

Raz0rEdge is offline
Little snitch watches all outbound traffic and if a new application/service makes a request, you get a pop-up allowing you either allow or deny that access. You can also control for how long (until quit, forever, just once) and so on..

I haven't really noticed any slow downs in my access overall..since it's more about blocking the first access and then just checking that it's the same access each time..that usually shouldn't involve any great overhead..

And no, just because an application uses root privileges doesn't mean it can circumvent little snitch, since LN goes a lot deeper than that..

--
Regards
...Ashwin



Be sure to read the Community Guidelines | The more information you provide, the better answers you get, remember GIGO.
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
Quote:
Originally Posted by Raz0rEdge View Post
Little snitch watches all outbound traffic and if a new application/service makes a request, you get a pop-up allowing you either allow or deny that access. You can also control for how long (until quit, forever, just once) and so on..

I haven't really noticed any slow downs in my access overall..since it's more about blocking the first access and then just checking that it's the same access each time..that usually shouldn't involve any great overhead..

And no, just because an application uses root privileges doesn't mean it can circumvent little snitch, since LN goes a lot deeper than that..
this might sound like a silly question.How do I know if someone is trying to connect.I realize that there will be an alert,but how do i know which progarams to block or let through?
QUOTE Thanks
Raz0rEdge

 
Raz0rEdge's Avatar
 
Member Since: Jul 17, 2009
Location: MA
Posts: 7,600
Raz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant future
Mac Specs: 27" i7 iMac, 24" iMac, 13" Macbook Air, iPhone 5 & 5S, iPod Nano 7th Gen, iPad 2 16GB WiFi, iPad 3

Raz0rEdge is offline


Each time an unknown application attempts to establish a connection, you will see pop-up like this with the application name, address it is trying to connect to and the port it is using..

Choosing the combination, "Any Connection" and "Forever" means you trust the application and you will not see any further pop-ups from that application..

--
Regards
...Ashwin



Be sure to read the Community Guidelines | The more information you provide, the better answers you get, remember GIGO.
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
Quote:
Originally Posted by Raz0rEdge View Post
Little snitch watches all outbound traffic and if a new application/service makes a request, you get a pop-up allowing you either allow or deny that access. You can also control for how long (until quit, forever, just once) and so on..

I haven't really noticed any slow downs in my access overall..since it's more about blocking the first access and then just checking that it's the same access each time..that usually shouldn't involve any great overhead..

And no, just because an application uses root privileges doesn't mean it can circumvent little snitch, since LN goes a lot deeper than that..
Quote:
Originally Posted by Raz0rEdge View Post


Each time an unknown application attempts to establish a connection, you will see pop-up like this with the application name, address it is trying to connect to and the port it is using..

Choosing the combination, "Any Connection" and "Forever" means you trust the application and you will not see any further pop-ups from that application..
so if I see a website that i do not know I should denny.If someone tries to get info from my mac, would it say remote server trying to access
QUOTE Thanks
Raz0rEdge

 
Raz0rEdge's Avatar
 
Member Since: Jul 17, 2009
Location: MA
Posts: 7,600
Raz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant futureRaz0rEdge has a brilliant future
Mac Specs: 27" i7 iMac, 24" iMac, 13" Macbook Air, iPhone 5 & 5S, iPod Nano 7th Gen, iPad 2 16GB WiFi, iPad 3

Raz0rEdge is offline
Little Snitch is all about outbound access only..so if an unknown application is making requests to addresses that just don't make sense, then yes you should deny it. But remember that most of the time you won't get a nice clear name (and icon) like in the sample image I posted..most of the times, you will get names like "aplpushserviced" or something..you can kinda guess that APL here is Apple, but you'll get a lot of other funky names that you want to allow access..

To prevent access from external people you should be using a hardware firewall in your router and other prevention schemes..

--
Regards
...Ashwin



Be sure to read the Community Guidelines | The more information you provide, the better answers you get, remember GIGO.
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
Quote:
Originally Posted by sunshineshade View Post
so if I see a website that i do not know I should denny.If someone tries to get info from my mac, would it say remote server trying to access
Quote:
Originally Posted by Raz0rEdge View Post
Little Snitch is all about outbound access only..so if an unknown application is making requests to addresses that just don't make sense, then yes you should deny it. But remember that most of the time you won't get a nice clear name (and icon) like in the sample image I posted..most of the times, you will get names like "aplpushserviced" or something..you can kinda guess that APL here is Apple, but you'll get a lot of other funky names that you want to allow access..

To prevent access from external people you should be using a hardware firewall in your router and other prevention schemes..
Thank you.I have 2 passwords on my computer and the firewall,what other preventions schemes would you suggest? I also use filevault
QUOTE Thanks
BrianLachoreVPI

 
BrianLachoreVPI's Avatar
 
Member Since: Feb 24, 2011
Location: Maryland
Posts: 3,742
BrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant futureBrianLachoreVPI has a brilliant future
Mac Specs: March 2011 15" MBP 2.3GHz i7 Quad Core 8GB Ram | Mid 2011 27" iMac 3.4 GHz i7 16 GB RAM 2 TB HDD

BrianLachoreVPI is offline
Moved to a more appropriate forum.
QUOTE Thanks
vansmith

 
vansmith's Avatar
 
Member Since: Oct 19, 2008
Location: Toronto
Posts: 18,062
vansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond reputevansmith has a reputation beyond repute
Mac Specs: 2012 13" MBP (2.5 i5, 8GB)

vansmith is online now
Might I ask why you feel it's necessary to have so many layers of security? I would suggest that at least 95% of users don't need a firewall, filevault and LS on at the same time.

Important Links: Community Guidelines : Use the reputation system if you've been helped.
M-F Blog :: Write for the blog
Writing a Quality Post
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
vansmith.I was a very disappointed owner of a dell computer.I just switched to mac 3 months ago.I am loving it.I guess my paranoia from my windows days are following me around!:
QUOTE Thanks
cwa107

 
cwa107's Avatar
 
Member Since: Dec 20, 2006
Location: Middletown, Pennsylvania
Posts: 26,577
cwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond repute
Mac Specs: 15" MBP, Core i7/2GHz, 8GB RAM, 480GB Crucial M500 SSD

cwa107 is offline
Quote:
Originally Posted by sunshineshade View Post
vansmith.I was a very disappointed owner of a dell computer.I just switched to mac 3 months ago.I am loving it.I guess my paranoia from my windows days are following me around!:
It's good to be a little paranoid.

In my opinion, an outbound firewall isn't necessary, unless you're really concerned that a piece of software you're running is trying to "phone home" unbeknownst to you. For the most part, this won't be of concern to the average user.

As far as the software firewall built into your Mac goes - it's turned off by default. OS X doesn't respond on any well known port even with the firewall turned off. If you're not leaving your home network with the machine, you can safely leave it off (in most cases). Most modern broadband modems use NAT, which is a form of a hardware firewall. That makes devices connected to it pretty much invisible from would-be attackers.

If you're using a wireless router, you definitely have a hardware firewall using NAT. Assuming you have good, strong security turned on (WPA2/AES), you're reasonably safe yet again.

Now, if you travel with the machine to foreign networks, or if you are using weak encryption on your wireless network, you definitely want the software firewall turned on AND in stealth mode.

Liquid and computers don't mix. It might seem simple, but we see an incredible amount of people post here about spills. Keep drinks and other liquids away from your expensive electronics!
QUOTE Thanks
sunshineshade

 
Member Since: Jul 14, 2011
Location: nevada
Posts: 14
sunshineshade is on a distinguished road
Mac Specs: mac pro 13 inch 2.3gh 4gb ram 320 harddrive

sunshineshade is offline
I had some people that i thought were friends trying to hack me before! A couple of days ago someone used one of my emails to sent a message to myself 3 times! how is that possible? Last week someone used an email address to reactivate my old facebook account.I have now closed that email account.Yes I am paranoid!
QUOTE Thanks
cwa107

 
cwa107's Avatar
 
Member Since: Dec 20, 2006
Location: Middletown, Pennsylvania
Posts: 26,577
cwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond reputecwa107 has a reputation beyond repute
Mac Specs: 15" MBP, Core i7/2GHz, 8GB RAM, 480GB Crucial M500 SSD

cwa107 is offline
Quote:
Originally Posted by sunshineshade View Post
I had some people that i thought were friends trying to hack me before! A couple of days ago someone used one of my emails to sent a message to myself 3 times! how is that possible? Last week someone used an email address to reactivate my old facebook account.I have now closed that email account.Yes I am paranoid!
Sounds like you're using weak passwords. Any idiot can hack a password that is in plain English.

Change the passwords for your accounts. Don't use the same one for all sites. Make sure it has a change of case and numbers as well as letters.

For example, instead of using "mypassword", use something like "mYp@55w3rd!".

Liquid and computers don't mix. It might seem simple, but we see an incredible amount of people post here about spills. Keep drinks and other liquids away from your expensive electronics!
QUOTE Thanks

Post Reply New Thread Subscribe


« Automatically fill free space with songs | Pages and like apple office apps »
Thread Tools

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off
Forum Jump

Similar Threads
Thread
Thread Starter
Forum
Replies
Last Post
Hackinations: 5 really good Lion tweaks OneMoreThing... Apple Rumors and Reports 0 07-26-2011 01:56 PM
Lion Any Good? FuzzyStorm14 OS X - Operating System 9 07-22-2011 06:09 PM
Looking for good external hard drive/enclosure? markw10 Other Hardware and Peripherals 3 04-14-2010 08:25 AM
Refurb, A Good Idea? XMARLTONX Switcher Hangout 26 03-22-2007 09:09 PM
Little Snitch Experience? mac57 OS X - Apps and Games 5 03-20-2007 10:12 AM

All times are GMT -4. The time now is 12:17 PM.

Powered by vBulletin
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
X

Welcome to Mac-Forums.com

Create your username to jump into the discussion!

New members like you have made this community the ultimate source for your Mac since 2003!


(4 digit year)

Already a member?