>Little Snitch Support wrote: > >> Hi, >> It is, of course, technically possible to implement some kind of API >> where external processes can edit rules. However, this would make >> Little Snitch useless as an anti-spyware tool. Spyware, worms and >> viruses are already trying to edit Little Snitch's rules to their >> favor and we have done everything to prevent this.
>As is it possible to add rules using a GUI interface, why isn't it >possible to add it by command line ? A password protected app (maybe >with a password protected cert key) may do the trick. >Even if viruses or spyware are sometimes dumb, your answer only say that >a spyware using the osX API to move the mouse on the "ok" button would >pass through LittleSnitch... :( >I'm sure something can be done without compromising LittleSnitch's job. I agree. Just last week I finished remotely installing lynx only to be confused as to why I could not access any websites. Of course LS was blocking the new app. A command line interface to LS would have been wonderful here. A script that requires root access should be enough and only available as an option during install or from the PrefPane. Require that the GUI specifically allow command line changes before installing the script and beginning to accept changes. It's an added security risk for those that aren't educated, but valuable for those that are. -- -- arno s hautala /-\ [EMAIL PROTECTED] -- -- _______________________________________________ Littlesnitch-talk mailing list [email protected] http://at.obdev.at/mailman/listinfo/littlesnitch-talk
