it's really interesting how the onus has been put on the user to value privacy. Most people will trust technology/be unaware of what's going on but are at the same time being used as data sources. As we move into a more connected society something is going to need to change to allow people to more simply take control of their privacy. Massive kudos to little snitch for lowering that barrier to entry and allowing people to start to understand how our apps & hardware actually work!
What would you recommend regarding anti malware for Mac? I hear that the AV suites can be very invasive. Would you recommend something like little snitch for monitoring and blocking dodgy connections, likely caused by the presence of malware, and combining that with decent backups so that you can recover should the worst happen? Is there actually any need for a full out av suite, like Norton, bitdefender or something a bit more lightweight, such as MalwareBytes?
Easily customizable application level ingress/egress Firewalls should be a default feature in all modern OS. The fact that it's still not makes you suspect that big IT idustry does that on purpose to collect user data unhindered, or worse to control user devices. Anyway, general populace should be made aware of the Firewall concept, and the importance of having it on all their smart devices.
Thanks for sharing! I agree... unfortunately most people are overwhelmed by application-layer firewall like Little Snitch and end up allowing everything.
19:45 that's a key point because one of the red alerts for me in the Jeffrey Paul's article was that big sur bypasses your vpn or even little snitch to phone home unencrypted , so your public real ip address is sent along with the other hash and data (geolocation, time, etc)
Hello! What do you think about Lulu (open source) and Radio Silence firewall's? In the web not many information about how this programs work (im not programmer) . It will be great to read your answer! Also what can you say now about privacy in MacOs 11? Now im on Catalina, hardware without T2, I don't want to upgrade because it's little scary in my opinion. And last answer is: is great deal to block all apple homecallings in firewall? Can it broke some security instruments build in Os? Sorry for my English!
Hey, haven't tried Lulu, but the project has a good reputation. About your older Mac, I will be publishing an episode shortly that should help with your questions. About the firewall, I would recommend blocking everything that doesn't break your user experience.
There is SO much to lockdown just based on what you've mentioned in this short video that it's overwhelming for a basic user. If you're not willing to continually configure LS all the time it's more of a headache to get simple things done without getting constant approval. Great video, just your brief explanation made me realize I don't want the hassle of LS.
@Sun Knudsen How about a LS setup for a freshly installed (or factory reset) system? Someone by now should know all the outgoing processes/connections of a fresh install and they aren't unique to each user right? Maybe different per upgrade or MacOs version but should be pretty similar I guess.
Hey Sun! As many other comments suggest, please take a look at LuLu. It's probably not as good and efficient as Little Snitch, but it's free and open source.
@@leoingson As far as I'm concerned, when an app attempts to create a connection over the internet, LuLu displays a popup asking whether you want to allow it or not. Also check if you haven't got passive mode on, as that causes all new connections to be allowed.
I heard of this program from other youtuber "Hacking with Friends Livestream" Kody... He talked about little snitch on how he monitors his traffic. i'm glad I found your video plus you brought up some other content I been trying to research but been lazy the last couple of months. VPN, plus other configurations. Thanks for sharing and the video going to susscribe.. keep up the great work!
Hi Sun, I have been binging your episodes, and they are great. I have question since I am use Windows for some task and linux for most, do you think Glasswire would be a good alternative for just Windows?
@@sunknudsen Okay, that's fine. I think it is not bad, as there are no open source alternatives to Windows, I'll probably research a little more, and see which works.
Just starting to use MULLVAD and LITTLE SNITCH... The issue is that in LITTLE SNITCH my username is appearing as my name an surname ... how can i change that ? It must be some hidden feature. Thanks !
Apple may be able to bypass VPNs and firewalls on the local device, but if you configure firewall rules or your VPN on your router, they shouldn't be able to bypass any of it. Custom router firmware, such as OpenWrt, is extremely useful for security conscious individuals.
great video ! can I ask question ? my Mac Pro 7,1 when put to sleep mode , the fans come on after exactly 2 hours .. I tried with nothing added to base Catalina and it still happens. is this trustD phoning home ? or something ? the fans do not come on when I turn wifi off and sleep. apple won't acknowledge the problem, and apple repair centre thinks its something in catolina, but doesn't know what` if you can shine some light , that would be amazing ! subbed and shared
@@sunknudsen hi!! thanks for the reply :-) yes, done all that and more recommended by apple. the want me to do a log test and send them it, but it takes 2 hours before the fans come on , and I need find time to download a fresh Catalina os so that there is nothing added to confuse the log with outside apps. I also had a problem with a sticky tape strip on the inside of the Mac Pro casing coming unstuck and folding back on its self, ive had 2 units with this issue. ive asked apple is this a design fault or or is it 2 faulty units ? what do you think they will say ? ( I dontthink they'll admit to a design fault .. you can also put the case on the wrong way !!)
What can you do about hackers who have gotten into your Internet connection somewhere between the outside of your house and the ISP switching office in town (15-miles away)? "They" have access not only to my Internet - which is DSL and comes over the phone line - but also had unrestricted access to my land-line corded phone calls. They also can "see" everything I type on simple text documents that just sit in a folder on my Mac. The only way I was ever able to lose these losers was to 1) Cancel my landline phone service, and 2) Subscribed to a satellite Internet service for one year, during which time they really did lose access to my computer. Unfortunatley, the satellite service was very expensive and very unreliable so I cancelled it after one year and went back to the DSL service, at which point the hackers picked right back up where they left off and started harassing me once again. Anyone have any suggestions?
First thing I have done after opening little snitch was to block little snitch itself sending data off my mac! My approach is to block everything and when something isn't working, then I look up that connection and allow it. But I'm not shure with the mac tasks :/
I see why that would be useful... but doing so would reveal more than I am comfortable with. Also, everyone has their own setup so configuring Little Snitch is really a personal process.
Hi Sun, after installing Little Snitch, I am not able to access the Security and Privacy Pane in my System Preferences. This seems concerning, any way to fix this?
Using computers in 2020 is a pain in the a**... These tools are all fine, but i cannot imagine, my mom would go trough all this configuration work.. something must change fundamentaly
I totally agree and feel the pain. I had a gut feeling this episode would spawn this conversation. The good news is not everyone needs to go that deep into the rabbit hole, but I believe everyone should at least be conscious of the invisible.
@@tofu4080 thats exacly my point... these people just want to surf the internet... ublock is easy - point granted. but if you really want to go for safety, you need umatrix too... its anyoing for them to install plugins and configure them. in the long run, this way of saving privacy will never reach mainstream users. sadly.
Hey, thanks for this, I recently download LS and was using Airdroid, I found it's pinning to severs owned by Tencent, I also found Chinese chrome extensions that are were pinning to hk and other severs. These apps are really helpful, but I kinda sketched of Chinese-made apps. If I just block the outbounds, is it safe to use? I'm also curious about what kind of information can they take from my computer? Any personal info?
Not an expert, but this is what I would search myself. I will look into the permissions of the chrome extensions and anything that says all websites, passwords, clipboards, etc. is probably good to disable when not in use, at least. But you should uninstall them if you can find a safer alternative. Or, block outgoing connections of those apps and extensions so even if they take your data, it can't be sent back. The goal for me, personally, is not to have hacker-level security and total anonymity, but to lower as much of my personal data and risk that companies have about me. That means I compromise on some services and apps that I find valuable to me, like macos screen time - which helps me manage time and my productivity although Sun had mention it's not a good idea for your privacy cuz Apple logs every minute of your app usage. The big tech made these things calling them "screen time limiting" , "for digital wellbeing" but really they made it cuz they can monitor your usage and learn user behaviors to make even more money. We're living in the primitive era of personal data and privacy as a right, companies making us agree to their terms and services. This practice will be looked as unethical, unprofessional, and inhumane in the future where hopefully we grow as a society that grants us our data and control over it.
@@StephenOrion are chrome extension able to take ur clipboard for example a password u clip and then send it to their servers where they can see it? Are they able to take that kind of info or does chrome limit those kind of data going out. I would assume chrome knows developers don't need ur clip history and does something about it. but I dunno just an assumption. Seems like only developers can know the extent of what info can be extracted and abused.
hey sun there was a new firefox update today, and in that there was a new feature called https only option, while i have been using dns over https already on firefox i was wondering if i enable https only mode will it affect dns over https which i connect to cloudflare on firefox, hope to get you're thoughts on this
Hey Rutvik, looks like the new HTTPS-only feature is essentially a built-in HTTPS Everywhere. That feature should have no effect on DNS over HTTPS (which is a separate protocol).
First time i paid for lsnitch was like 2009, becuase of pirated software. First time i paid for vpn was when i moved to china in 2015, because i had to. Now in 2021, esp with new macos, privacy has gone off the deep end. I cant believe it
4 ปีที่แล้ว +1
Hey Sun, great video as always! Would you consider giving your opinion about a tool called “Outline” which helps people self hosting their own “VPN” (which is actually based on the Shadowsocks proxy protocol) easily. Should people use it or should they use an actual VPN protocol? Thank you so much!
Thanks for the push and for sharing Outline. I will look into it. While I investigate this protocol (not sure if and when I will publish on the subject), curious to learn what is your opinion on the benefits provided by Shadowsocks vs strongSwan or WireGuard?
At first glance, I see Shadowsocks was designed to circumvent censorship. Do you know if self-hosting a VPN also works in countries where Shadowsocks is used? Curious about what nation state firewalls use to detect and block traffic.
4 ปีที่แล้ว
@@sunknudsen Thanks for replying! The biggest benefits that I get is that in my country Vietnam where the internet is censored, in some holidays we often experience VPN crackdowns which make tools like WireGuard and strongSwan unusable. However, Outline (and tools based on Shadowsocks) work just fine on those days. Also, when I set up both strongSwan and Outline on the same server, Outline gave me a 30% better speed which made me wonder if the protocol is actually better or there are some downsides comparing to the traditional VPN protocols.
Are self-hosted WireGuard and strongSwan VPNs also censored (meaning Shadowsocks is somehow allowed through the firewall)?
4 ปีที่แล้ว
@@sunknudsen Correct. I tried both your strongSwan installation script and Nyr WireGuard script, none of them work on special holidays but Shadowsocks work just fine.
@@sunknudsen please let me know how i can undo the echo thing. running big sur, and i had no wifi connection after reboot. edit: now i found out that in DNS-settings, macos sets a search-domain after every reboot, and I don't unterstand why....
So for an average Android phone / Mac Laptop user. Osx is not secure. Gmail/Google not secure. What is the alternative solution? Linux and BlackBerry phone!
@@sunknudsen It's not my name, but you seemed concerned about the correct pronunciation. So it seemed right to me, knowing the right pronunciation, to write it down in the comments .
Linux is the only way to have privacy, security and peace of mind.... It's free, you can choose the operating system that fits your needs and lifestyle too. There is a learning curve involved...It's no different than a person learning to drive a car with a Manual transmission... People are lazy and content with following trends and being in the group... It's easy for Apple to take advantage of people because they refuse to stand out in the crowd.
(sighs) why cant we just go back to the caveman era, im so tired in my mind over all these terminal, malware, hackers, viruses, plugins, adware etc crap!!! (sighs again) After watching this video i realised that im Level 0, not even 1 yet. Ive installed little snitch but i dont think im gonna keep it, might uninstall it, its drivin me crazy and thats on beginner mode. i tried a little bit of "alert mode" and it drove me nuts!!! the first 5 minutes!!! so many strange files and daemons and whatever... all these long file names with random letters in them as well, i just dont know what they are, and how to deal with them. Theres something called Racoon on the left hand side and for my simple brain it understands that its a medium sized mammal native to north america who wants to access my computer, fine access it... whatever man... i dont care anymore (sighs)
Hey, feel you... getting started with application layer firewalls (such as Little Snich) in alert mode is overwhelming. I agree it's sad we have to do all of this to essentially have privacy which we should just have... I hope you find the courage to plow through. Once you endure this initial phase of allowing and blocking processed, things get more quiet.
@@sunknudsen my main concern when using little snitch is allowing some things to go out of my computer, if theres malware or viruses already on my computer and i might just accidentally allow them to go back and forth on my computer without even knowing it. Ive tried to highlight the file and pasting it in the browser to find out what it is, but theres so many different types of answers and no direct or common answers, like i mentioned before, its driving me nuts!!!
it's really interesting how the onus has been put on the user to value privacy. Most people will trust technology/be unaware of what's going on but are at the same time being used as data sources. As we move into a more connected society something is going to need to change to allow people to more simply take control of their privacy. Massive kudos to little snitch for lowering that barrier to entry and allowing people to start to understand how our apps & hardware actually work!
What would you recommend regarding anti malware for Mac? I hear that the AV suites can be very invasive. Would you recommend something like little snitch for monitoring and blocking dodgy connections, likely caused by the presence of malware, and combining that with decent backups so that you can recover should the worst happen?
Is there actually any need for a full out av suite, like Norton, bitdefender or something a bit more lightweight, such as MalwareBytes?
Hi Sun. Have you ever heard about LuLu? It's an open-source firewall that aims to block unknown outgoing connections.
Thanks for sharing. I have but haven't experimented with LuLu. The project is on my backlog. 🤓
Easily customizable application level ingress/egress Firewalls should be a default feature in all modern OS. The fact that it's still not makes you suspect that big IT idustry does that on purpose to collect user data unhindered, or worse to control user devices.
Anyway, general populace should be made aware of the Firewall concept, and the importance of having it on all their smart devices.
Thanks for sharing! I agree... unfortunately most people are overwhelmed by application-layer firewall like Little Snitch and end up allowing everything.
19:45 that's a key point because one of the red alerts for me in the Jeffrey Paul's article was that big sur bypasses your vpn or even little snitch to phone home unencrypted , so your public real ip address is sent along with the other hash and data (geolocation, time, etc)
I agree this is frightening... will have to look into this in depth before considering an upgrade.
Hello! What do you think about Lulu (open source) and Radio Silence firewall's? In the web not many information about how this programs work (im not programmer) . It will be great to read your answer! Also what can you say now about privacy in MacOs 11? Now im on Catalina, hardware without T2, I don't want to upgrade because it's little scary in my opinion. And last answer is: is great deal to block all apple homecallings in firewall? Can it broke some security instruments build in Os? Sorry for my English!
Hey, haven't tried Lulu, but the project has a good reputation. About your older Mac, I will be publishing an episode shortly that should help with your questions. About the firewall, I would recommend blocking everything that doesn't break your user experience.
There is SO much to lockdown just based on what you've mentioned in this short video that it's overwhelming for a basic user. If you're not willing to continually configure LS all the time it's more of a headache to get simple things done without getting constant approval. Great video, just your brief explanation made me realize I don't want the hassle of LS.
I agree it can be overwhelming... that being said, the benefits are great and once a first pass is done, the overhead isn't that bad.
@Sun Knudsen How about a LS setup for a freshly installed (or factory reset) system? Someone by now should know all the outgoing processes/connections of a fresh install and they aren't unique to each user right? Maybe different per upgrade or MacOs version but should be pretty similar I guess.
Hey Sun! As many other comments suggest, please take a look at LuLu. It's probably not as good and efficient as Little Snitch, but it's free and open source.
Thanks for sharing. Will do!
What is Lulu actually doing? I installed it once, and wasn't sure it's even there, and filtering anything.
@@leoingson As far as I'm concerned, when an app attempts to create a connection over the internet, LuLu displays a popup asking whether you want to allow it or not. Also check if you haven't got passive mode on, as that causes all new connections to be allowed.
@@WolfDaniel Thanks, will try! Active mode could do the trick.
Cool, never heard about it. Very interesting, thank you 💛
I heard of this program from other youtuber "Hacking with Friends Livestream" Kody... He talked about little snitch on how he monitors his traffic. i'm glad I found your video plus you brought up some other content I been trying to research but been lazy the last couple of months. VPN, plus other configurations. Thanks for sharing and the video going to susscribe.. keep up the great work!
Thanks for the push Louie and kudos for learning this stuff!
Hi Sun, I have been binging your episodes, and they are great. I have question since I am use Windows for some task and linux for most, do you think Glasswire would be a good alternative for just Windows?
Hey Arvin, thanks for the push. I have no experience on Windows and haven't stumbled upon Glasswire. Perhaps others can share feedback?
@@sunknudsen Okay, that's fine. I think it is not bad, as there are no open source alternatives to Windows, I'll probably research a little more, and see which works.
Just starting to use MULLVAD and LITTLE SNITCH... The issue is that in LITTLE SNITCH my username is appearing as my name an surname ... how can i change that ? It must be some hidden feature. Thanks !
I’m here at your video, looking to understand, and install Little Snitch
This is so crazyy thank you Sun!
Apple may be able to bypass VPNs and firewalls on the local device, but if you configure firewall rules or your VPN on your router, they shouldn't be able to bypass any of it.
Custom router firmware, such as OpenWrt, is extremely useful for security conscious individuals.
Great point! Another use case for self-hosting our own VPNs.
great video ! can I ask question ?
my Mac Pro 7,1 when put to sleep mode , the fans come on after exactly 2 hours .. I tried with nothing added to base Catalina and it still happens. is this trustD phoning home ? or something ? the fans do not come on when I turn wifi off and sleep.
apple won't acknowledge the problem, and apple repair centre thinks its something in catolina, but doesn't know what`
if you can shine some light , that would be amazing !
subbed and shared
Have you tried disabling "Wake for Wi-Fi network access" and "Enable Power Nap while plugged into a power adapter" in "Energy Saver"?
@@sunknudsen hi!! thanks for the reply :-)
yes, done all that and more recommended by apple. the want me to do a log test and send them it, but it takes 2 hours before the fans come on , and I need find time to download a fresh Catalina os so that there is nothing added to confuse the log with outside apps.
I also had a problem with a sticky tape strip on the inside of the Mac Pro casing coming unstuck and folding back on its self, ive had 2 units with this issue. ive asked apple is this a design fault or or is it 2 faulty units ?
what do you think they will say ? ( I dontthink they'll admit to a design fault .. you can also put the case on the wrong way !!)
What can you do about hackers who have gotten into your Internet connection somewhere between the outside of your house and the ISP switching office in town (15-miles away)? "They" have access not only to my Internet - which is DSL and comes over the phone line - but also had unrestricted access to my land-line corded phone calls. They also can "see" everything I type on simple text documents that just sit in a folder on my Mac. The only way I was ever able to lose these losers was to 1) Cancel my landline phone service, and 2) Subscribed to a satellite Internet service for one year, during which time they really did lose access to my computer. Unfortunatley, the satellite service was very expensive and very unreliable so I cancelled it after one year and went back to the DSL service, at which point the hackers picked right back up where they left off and started harassing me once again. Anyone have any suggestions?
First thing I have done after opening little snitch was to block little snitch itself sending data off my mac! My approach is to block everything and when something isn't working, then I look up that connection and allow it. But I'm not shure with the mac tasks :/
Quick question, might be a silly one, how did you create 127.0.0.1 loop please??
Hey Craig, have a look at the description of th-cam.com/video/vC7fZv13aXM/w-d-xo.html.
If not doing it on a domain by domain basis, it is useless to prevent lots of browser hijacks for instance.
Thanks for sharing. I agree, but for most people the convenience trade-off outweighs the benefits.
Sun do you recommend Linode for a self hosted VPN?
Excellent Tutorial!
Great video! Thanks! Which Apple processes you block using Little Snitch?
Hey Viacheslav, thanks for the push. Many! Put simply, I block everything I can without breaking the apps I use.
@@sunknudsen Can you please write the list of these processes?)
I see why that would be useful... but doing so would reveal more than I am comfortable with. Also, everyone has their own setup so configuring Little Snitch is really a personal process.
@@sunknudsen Ok, I understand, thanks!
Hi Sun, after installing Little Snitch, I am not able to access the Security and Privacy Pane in my System Preferences. This seems concerning, any way to fix this?
Very strange… I would contact Little Snitch support about this. Sounds like a bug or edge case. Never experienced this myself.
Sun should trust d stay disabled on LS?
Using computers in 2020 is a pain in the a**...
These tools are all fine, but i cannot imagine, my mom would go trough all this configuration work..
something must change fundamentaly
I totally agree and feel the pain. I had a gut feeling this episode would spawn this conversation. The good news is not everyone needs to go that deep into the rabbit hole, but I believe everyone should at least be conscious of the invisible.
@@tofu4080 thats exacly my point... these people just want to surf the internet... ublock is easy - point granted. but if you really want to go for safety, you need umatrix too... its anyoing for them to install plugins and configure them. in the long run, this way of saving privacy will never reach mainstream users. sadly.
what are your thoughts about lulu by objective-see ?
Hey, thanks for this, I recently download LS and was using Airdroid, I found it's pinning to severs owned by Tencent, I also found Chinese chrome extensions that are were pinning to hk and other severs. These apps are really helpful, but I kinda sketched of Chinese-made apps. If I just block the outbounds, is it safe to use? I'm also curious about what kind of information can they take from my computer? Any personal info?
Not an expert, but this is what I would search myself. I will look into the permissions of the chrome extensions and anything that says all websites, passwords, clipboards, etc. is probably good to disable when not in use, at least. But you should uninstall them if you can find a safer alternative. Or, block outgoing connections of those apps and extensions so even if they take your data, it can't be sent back. The goal for me, personally, is not to have hacker-level security and total anonymity, but to lower as much of my personal data and risk that companies have about me. That means I compromise on some services and apps that I find valuable to me, like macos screen time - which helps me manage time and my productivity although Sun had mention it's not a good idea for your privacy cuz Apple logs every minute of your app usage. The big tech made these things calling them "screen time limiting" , "for digital wellbeing" but really they made it cuz they can monitor your usage and learn user behaviors to make even more money. We're living in the primitive era of personal data and privacy as a right, companies making us agree to their terms and services. This practice will be looked as unethical, unprofessional, and inhumane in the future where hopefully we grow as a society that grants us our data and control over it.
@@StephenOrion are chrome extension able to take ur clipboard for example a password u clip and then send it to their servers where they can see it? Are they able to take that kind of info or does chrome limit those kind of data going out. I would assume chrome knows developers don't need ur clip history and does something about it. but I dunno just an assumption. Seems like only developers can know the extent of what info can be extracted and abused.
Little Snitch is one of the reason for me to stay on MacOS pre-BigSur
Totally agree!
this is amazing! im staying on catalina for a while. thank you
What about power consumption and resource usage?
Great question... not sure, but haven't noticed anything alarming in this regard.
@@sunknudsen thx for replying. I tested little snitch myself. It seems to work fine with demo version
Awesome content
Pls do a video for big sur or the next OS :-)
hey sun there was a new firefox update today, and in that there was a new feature called https only option, while i have been using dns over https already on firefox i was wondering if i enable https only mode will it affect dns over https which i connect to cloudflare on firefox, hope to get you're thoughts on this
Hey Rutvik, looks like the new HTTPS-only feature is essentially a built-in HTTPS Everywhere. That feature should have no effect on DNS over HTTPS (which is a separate protocol).
@@sunknudsen oh that's good then, I wonder if it will have any effect on page loading time though
First time i paid for lsnitch was like 2009, becuase of pirated software. First time i paid for vpn was when i moved to china in 2015, because i had to. Now in 2021, esp with new macos, privacy has gone off the deep end. I cant believe it
Hey Sun, great video as always! Would you consider giving your opinion about a tool called “Outline” which helps people self hosting their own “VPN” (which is actually based on the Shadowsocks proxy protocol) easily. Should people use it or should they use an actual VPN protocol? Thank you so much!
Thanks for the push and for sharing Outline. I will look into it. While I investigate this protocol (not sure if and when I will publish on the subject), curious to learn what is your opinion on the benefits provided by Shadowsocks vs strongSwan or WireGuard?
At first glance, I see Shadowsocks was designed to circumvent censorship. Do you know if self-hosting a VPN also works in countries where Shadowsocks is used? Curious about what nation state firewalls use to detect and block traffic.
@@sunknudsen Thanks for replying! The biggest benefits that I get is that in my country Vietnam where the internet is censored, in some holidays we often experience VPN crackdowns which make tools like WireGuard and strongSwan unusable. However, Outline (and tools based on Shadowsocks) work just fine on those days. Also, when I set up both strongSwan and Outline on the same server, Outline gave me a 30% better speed which made me wonder if the protocol is actually better or there are some downsides comparing to the traditional VPN protocols.
Are self-hosted WireGuard and strongSwan VPNs also censored (meaning Shadowsocks is somehow allowed through the firewall)?
@@sunknudsen Correct. I tried both your strongSwan installation script and Nyr WireGuard script, none of them work on special holidays but Shadowsocks work just fine.
so, is there a benefit from not blocking the ocsp call?
if so, how do we undo the echt 127.0.0.1 thing?
keep it up sun! 🙂
Hey, not sure if there are benefits of not blocking the calls... unless a developer goes rogue. I included a line to undo the patch in last episode.
@@sunknudsen great thanks. must‘ve missed 🙃
@@sunknudsen I really can't find it. Where exactly can I find it?
@@sunknudsen please let me know how i can undo the echo thing. running big sur, and i had no wifi connection after reboot. edit: now i found out that in DNS-settings, macos sets a search-domain after every reboot, and I don't unterstand why....
How about LuLu? It is a free alternative to Little Snitch
Hey Matteo, great question. Will look into LuLu!
Its open source too!
What are your thought of little snitch vs Lulu which is free and open source? Thanks!!!
Haven’t tried Lulu… have to look into the project!
and is this worth doing on high sierra?
Lulu is a good free alternative
BTW the hashing will reveal your IP no matter what, it bypasses VPN's
Not on Catalina right?
@@sunknudsen Not that i know of, It definitely is in Big Sur though.
Thanks for sharing... Will have to explore the Big Sur rabbit hole extensively before upgrading.
So for an average Android phone / Mac Laptop user.
Osx is not secure.
Gmail/Google not secure. What is the alternative solution?
Linux and BlackBerry phone!
On mobile (being an Android user), you could have a look at GrapheneOS.
why block "trustd"?
This sounds like incompetence rather than malice.
Do you mean on Apple's end?
Jacopo is an Italian name. So it's pronunced "iacopo". Btw great video, cheers from Italy.
Thanks so much for mentioning this and sorry for messing up your name Jacopo (if ever you read this).
@@sunknudsen It's not my name, but you seemed concerned about the correct pronunciation. So it seemed right to me, knowing the right pronunciation, to write it down in the comments .
Interesting 🤔
Is LULU as good as Little snitch?
i'm sticking to linux.
Feel you.
OPEN SNITCH IS FOR LINUX USERS.
Linux is the only way to have privacy, security and peace of mind....
It's free, you can choose the operating system that fits your needs and lifestyle too.
There is a learning curve involved...It's no different than a person learning to drive a car with a Manual transmission...
People are lazy and content with following trends and being in the group...
It's easy for Apple to take advantage of people because they refuse to stand out in the crowd.
Algorithm.
(sighs) why cant we just go back to the caveman era, im so tired in my mind over all these terminal, malware, hackers, viruses, plugins, adware etc crap!!! (sighs again) After watching this video i realised that im Level 0, not even 1 yet. Ive installed little snitch but i dont think im gonna keep it, might uninstall it, its drivin me crazy and thats on beginner mode. i tried a little bit of "alert mode" and it drove me nuts!!! the first 5 minutes!!! so many strange files and daemons and whatever... all these long file names with random letters in them as well, i just dont know what they are, and how to deal with them.
Theres something called Racoon on the left hand side and for my simple brain it understands that its a medium sized mammal native to north america who wants to access my computer, fine access it... whatever man... i dont care anymore (sighs)
Hey, feel you... getting started with application layer firewalls (such as Little Snich) in alert mode is overwhelming. I agree it's sad we have to do all of this to essentially have privacy which we should just have... I hope you find the courage to plow through. Once you endure this initial phase of allowing and blocking processed, things get more quiet.
@@sunknudsen my main concern when using little snitch is allowing some things to go out of my computer, if theres malware or viruses already on my computer and i might just accidentally allow them to go back and forth on my computer without even knowing it. Ive tried to highlight the file and pasting it in the browser to find out what it is, but theres so many different types of answers and no direct or common answers, like i mentioned before, its driving me nuts!!!
It's pronounced DAY-mon. not DEE-mon
Thanks, will keep that in mind.