This version fixes a new bug in 5.7.2 where connection alerts appeared without the big app icon of the connecting application on macOS 13 Ventura and probably older systems. MacOS 14 Sonoma was not affected.
default.profraw) in the working directory. This has been disabled.
fwknop and similar tools which use ephemeral ports for communication.
~/Library/Developer/XCTestDevices. This directory is used by the
xcodebuild command line tool.
This version fixes a bug where dialogs shown after activation of automatic profile switching and after entering a new license key did not contain any text.
littlesnitch capture-traffic from the command line, traffic from related helper-processes is now included as well. Parameters for the
capture-traffic subcommand have been renamed to reflect this change.
This version brings a new feature to Network Monitor: Background processes which are part of the operating system are now grouped into a single entry titled macOS, which can be expanded to show all individual processes. Likewise, iOS/iPadOS/watchOS/tvOS processes that are running within Xcode’s Simulator are now grouped into a single Simulator entry.
This version fixes a crash in Network Monitor when the “Make Connections Private” action was invoked from the context menu.
This is a hotfix release for 5.2. It fixes a crash of the Little Snitch Agent when an iOS app runs in the simulator. The effect of this crash was that no connection alert was shown and Internet connections not covered by existing rules would hang.
This version focuses on three main areas:
/var/folders automatically ignore random path components. Rules for executables in other locations can be converted manually into „Identifier Rules“ which refer to the process by its code signature identifier and team identifier or SHA256 (for unsigned scripts) instead of the executable’s path.
This patch release fixes a possible loss of network connectivity due to a crash of the Little Snitch network extension. This crash could occur when an application used the QUIC protocol. This protocol is a replacement for HTTPS which is used primarily by Google Chrome and its derivatives when connecting to Google servers.
domain is a top level domain.
If you have purchased Little Snitch 4 after November 1, 2019, you can upgrade to Little Snitch 5 for free – just use your existing license key. If you purchased Little Snitch 4 before that period, you can get the upgrade at a reduced price.
There has been quite a bit of public discussion recently about the deprecation of various types of kernel extension on macOS. Among them are Network Kernel Extensions (NKEs). You probably did not care so far, but Little Snitch 4 was based on an NKE to do its job. Since NKEs are now deprecated and no longer officially supported by Apple, we have spent the last year rewriting the core of Little Snitch to the Network Extension (NE) framework. While working on this core, we took the chance to revise some old design decisions and add some long anticipated features.
/dev/bpf devices (Berkeley Packet Filter). These devices can be used to send and receive data with arbitrary network protocols. Requires installation of an Endpoint Security module in Little Snitch > Preferences > Advanced.
Contents/Components/littlesnitch which can be used to control Little Snitch from scripts or via Terminal. Scriptability must be enabled in Little Snitch’s Security Preferences.
This is a hotfix for a bug in macOS Big Sur Beta 5! Please install this version before upgrading to Beta 5! Otherwise you won’t be able to boot your computer!
This version does not install an Endpoint Security System Extension because Big Sur Beta 5 suffers a kernel panic immediately after booting this System Extension is installed. During upgrade, an existing Endpoint Security System Extension is removed. Currently, the only function of the Endpoint Security System Extension is to detect access to Berkeley Packet Filter devices. This version can therefore not warn when a process tries to access the Berkeley Packet Filter.
The good news is that Big Sur Beta 5 fixes an other kernel panic which occurred on some computers when Little Snitch’s Network Extension was installed.
/Library/Application Support/Objective Development/Little Snitch/configuration4.xpl to import rules and settings from Little Snitch 4. This also works with configurations and backups from Little Snitch 3.
This version is primarily a test of the automatic software update. Please install this version using the automatic software update mechanism, not manually.
If you install this Technology Preview for the first time, please read the installation hints in the release notes of build 6104 below.
Library/Logs/Little Snitch subdirectory.
This Technology Preview of Little Snitch is not yet feature complete. There are several known limitations you should be aware of before you install:
During the installation you will be asked to enable system extensions in System Preferences > Security & Privacy. After clicking on “Open Security Preferences”, the same dialog will appear once again. This is a bug in macOS Big Sur.
After clicking on “Allow…” in System Preferences > Security & Privacy, you will see a confirmation dialog containing two entries labeled “Placeholder Developer”. These incorrect labels are a bug in macOS Big Sur. The checkboxes for both of these entries must be checked.
/Library/Application Support/Objective Development/Little Snitch/, make sure you also backup this password.
If Little Snitch crashes or behaves in an unexpected way, please contact our support using the “Send Feedback” button above.
Make sure to include the following information: