Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: GreenMamba
GreenMamba Author
User level: Level 1
19 points

Unwanted network connections.

To start I am hoping this post will be put in Apple Support Communities > Mac OS & System Software > El Capitan...


I am currently using a 13" Macbook Pro late 2014 RETINA display SSD hard drive with an i5 intel. However I have been using mac's for the past 10 or so years and I love them. I am starting this discussion for the simple yet complex questions involved with network activity. What ever happened to booting up your mac/system and you "the user" is the person who makes all of these outside connections to the internet. I use Little Snitch, along with iStats. It seems kind of weird to need an app to watch all of your network connections. I was always under the impression only Windows (especially windows 10) was the OS that kept and sent all of your data back to Microsoft. Simply put for the lay mac user we don't even know what the majority of these daemons are trying to connect to the web for. A quick example is gamed. I have researched and looked up all of the Game Kit Frameworks which support this protocol, in total I believe there are 16. I have looked at each and decided I don't use any of them so why does this daemon need to connect to the outside world automatically? So I decided I would not allow it to connect to the web. Unfortunately i have recently read El Capitan has "System Integrity Protection" which prevents even root from modifying system files. So in short what does this mean? Again as a lay mac user (i am not a programmer or computer engineer) why must certain items run even if I don't use them? Geo-location is another example, probably better than gamed. I am under the assumption after researching a little bit, the com.apple.geod.xpc protocol basically is a location service. Well what if I don't want my location to be documented constantly while using my mac? Why can't i just turn it off. I believe it is mainly used for Maps. I started this thread with the intention of maybe getting an answer with a list of protocols/daemons/connections which need to be made and why. It seems like everyday I am googling to see what one of these Apple services are and why I need to be allowing it to connect to the web. Recently I had an unauthorized ovh.net server attached to my netstats and it was only receiving data from my laptop. I am not sure if i caught a virus on a website or something, but it spooked me enough to wipe my SSD and do a clean re-install. For me this process isn't very difficult because i keep all of my photos and data backed up on external hard drives and i just wanted to make sure that the server which was connecting to me was gone, and took whatever little code that allowed it to connect was gone with it. In short I would really appreciate some replies with Apple services which try to connect upon startup but you do not need. I am trying to run a system with as little bloat as possible. I do not want to use iCloud but it almost seems impossible because i own an iPhone, Macbook, and other Apple products which all want to communicate (even though i wish they were just single entities). If I can please get some help with things I can get rid of without disrupting the integrity of my UNIX-like OS aka OS X El Capitan I would be very happy. I would also like to see some replies to see if anyone feels the same way I do.

Thanks

MacBook Pro (Retina, 13-inch, Mid 2014), OS X El Capitan (10.11.3)

Posted on Feb 1, 2016 8:30 AM

Reply
66 replies
User profile for user: OregonRebel
OregonRebel
User level: Level 1
35 points

Mar 9, 2016 4:21 PM in response to GreenMamba

I believe you could create a rule for Any Process in Little Snitch to deny all outgoing connections. But then you'd have no access to the Internet or email.

LS is supposed to check for Deny rules before Allow rules, so that should stop all outgoing connections even if the default system rules are still are enabled.


It may be time-consuming, but the best way is probably to create individual Deny rules for each process you want to block, which is rather easily done from the LS Network Monitor window: Right-click a connection and select Create Rule...


You could always disable your network in System Preferences before rebooting, or unplug your Ethernet cable if connected via Ethernet.

But doing either of those will allow processes to start calling out again once the connection has been restored.


There's no way to stop many of the system processes from trying to call out, so the only option is to block them.

Reply
User profile for user: Dr. Chet
Dr. Chet
User level: Level 1
39 points

Aug 3, 2016 8:18 AM in response to OregonRebel

THANK YOU GreenMamba and OregonRebel for bringing up this important topic! I realize I'm late joining the conversation but I just came across it. I use a Macbook Pro with Yosemite for recording music, and these unwanted connections became a real issue during a session where a great take by a client was ruined by a glitch that turned out to be gamed making thousands of connections. I turned off the Wi-Fi altogether but noticed that gamed kept trying to connect, although not as many times as before. Even after I blocked it with Little Snitch it kept trying. I was finally able to disable it entirely since I never use that machine for games, but when I heard that it was considered a part of the "core" of 10.11 I decided against upgrading.


I also had to block photolibrary because I never use it, or anything on iCloud at all.


I would just like simple options in, say, the Control Panel, to turn off games, iCloud, and anything else that wants to connect that is not strictly necessary without my consent (i.e. I have no problem with the system, anti-virus, or LS for example, auto-updating).


I know a lot of my Mac-using friends feel the same way, and we figured what's the point in complaining, but maybe if enough of us do, things might change ... a bit. I can dream.


Thanks for the thread.

Reply
User profile for user: OregonRebel
OregonRebel
User level: Level 1
35 points

Aug 3, 2016 10:31 AM in response to Dr. Chet

Complaints are futile - they fall on deaf ears at Apple.


Apple developers, in their infinite wisdom, have decided that they know what's best for everyone's devices, not their owners. Just sit back and apathetically let the Great Apple control your machine.


👿Make no attempt to interfere with communications from your computer!👿




It may have been done with good intentions, like making the OS more invisible and easier to use for most people, but for hands-on users and anyone concerned with privacy, it poses a real problem.


I suggest you check out the appRadioSilence, which claims to be "completely invisible, with no annoying pop-ups."

And I'll have to agree that it is - I'd forgotten I'd installed it a few months ago until writing this, because I never get asked to block/allow connections.



MOST IMPORTANTLY: Pay no attention if anyone posts their usual diatribe here about what a useless app Little Snitch is! Those of us who value our privacy already know what a valuable tool it is!

Reply

Unwanted network connections.

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up