this post was submitted on 29 Mar 2024
197 points (100.0% liked)
Technology
37799 readers
277 users here now
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
This is from 2020. You absolutely can use Little Snitch or a similar firewall to block this traffic.
https://eclecticlight.co/2021/02/23/how-to-run-apps-in-private/
We agree how sinister and dystopian it is to need to work against your hardware/os vendor for something like this though, right?
Shutup 10 exists, but that doesn't make it OK that Windows users have to continuously be on guard for MS to try snooping on them, either.
Spending time to this is waste of life, it used be you setup the PC and it was good, now it is maintenance. I could not justify it any longer... made that switch.
Can you though? LS now operates in user mode, which means it can no longer block traffic sent to Apple via a kernel thread.
It’s all a bit pointless though, as a LOT of hardware now calls home as well, and it doesn’t matter what OS to run on top of it unless you’re running something like TempleOS. Vanilla Linux is not going to protect you by itself. And if you’re using a repository system for software updates, that’s going to be reporting your software too — and many web browsers also report the URLs you go to (or even consider going to) and what extensions you have loaded.
But that article points at a solution for macOS users: it’s the certificates that are being checked. Any non-bog-standard software I run is not notarized or signed, and it functions just fine and has nothing to send back to Apple’s servers. First time I run it I need to right click and select Open to run the app, and this bypasses the entire signer system.
Added in an edit
Little Snitch won't work because they use the Apple-blessed content filter which apparently doesn't allow blocking this.
Pointing it to localhost in the hosts file does work, as indicated in that article.