←back to thread

Apple's apps bypass firewalls like LittleSnitch and LuLu on macOS Big Sur

(twitter.com)
1183 points robenkleene | 5 comments | 20 Oct 20 15:51 UTC | HN request time: 0.625s | source
1. jedberg ◴[20 Oct 20 16:02 UTC] No.24838955[source]
A great example of why you need defense in depth. Ideally you'd be running the local firewall on your box, as well as an external firewall.

That being said, this is not ok behavior on Apple's part. There shouldn't be a way for traffic to go around the firewall like this, even if it is just Apple apps.

Because as Apple well knows, once you make a backdoor, someone will figure out a way to exploit it.

replies(2): >>24839551 #>>24841733 #
2. klyrs ◴[20 Oct 20 16:46 UTC] No.24839551[source]
> Because as Apple well knows, once you make a backdoor, someone will figure out a way to exploit it.

I can't help but see this as the real reasoning behind the change. With EARN-IT on on the table and antitrust cases looming, they've got every reason to bend over and give governments whatever access they can.

3. Wowfunhappy ◴[20 Oct 20 19:56 UTC] No.24841733[source]
If you're on a laptop, you won't necessarily always be able to filter on the router level.
replies(1): >>24841915 #
4. jedberg ◴[20 Oct 20 20:15 UTC] No.24841915[source]
Of course not, which is why this still isn't very cool. If you're super paranoid you can always carry around a small router or a pi to attach to the wifi and be your external router though.
replies(1): >>24844238 #
5. sneak ◴[21 Oct 20 02:18 UTC] No.24844238{3}[source]
This comment frames someone who wants privacy, a routine and everyday common desire, as “super paranoid”. That’s bad, but, worse yet, inaccurate.

You shouldn’t have to carry around another box to keep your computer or phone from spying on you.