Bug Fixes

• Another attempt to tackle the “delay during system startup on macOS Mojave” problem that some users are experiencing (which we are unfortunately unable to reproduce on any of our machines). If you are affected by this problem, please give this version a try and let us know if it solved the issue for you.
• Fixed a drawing issue in Dark Mode on macOS Mojave in the connection alert when drawing the separator line in the case of a code signature mismatch.
• Fixed an issue with “undo” when unsubscribing from a rule group or when deleting a profile.
• Fixed an issue causing XPC services inside bundled frameworks to not be recognized as XPC. This resulted in connection alerts for the XPC services themselves instead of for the app the service belongs to.

Bug Fixes

• Fixed an issue where connection alerts would erroneously contain a warning that an application’s code signing certificate was unacceptable. This mainly happened when a process’ first connection was an incoming connection.
• Fixed the “Duration” setting in Preferences > Alert > Preselected Options not being respected.
• Fixed an issue where an app’s Internet Access Policy failed to load if the app is not localized into multiple languages.
• Fixed an issue where checking for updates of subscribed rule groups would send a truncated value for the If-Modified-Since HTTP header.

Compatibility Note

This version uses an improved but incompatible file format to archive the current rule set and preferences. The old archive file is preserved. If you downgrade to a previous version, all changes made since this upgrade will be reverted. Backup files are still created in a backward-compatible format.

Bug Fixes

• Fixed a bug which could cause a Kernel Panic when a code signature did not include the full certificate chain. This bug was introduced in version 4.3 nightly (5231).

Improvements

• Network Monitor uses less CPU time while inactive.
• Accepts the code signature of the running instance of an app while the version on disk has already been upgraded.

Bug Fixes

• Fixed a possible spontaneous crash of various components. This was a new bug in the previous nightly build.
• Fixed a bug where the selected profile was not drawn correctly in the connection alert.

Improvements

Improved handling of processes without code signature in Silent Mode. When there was a matching allow-rule for “Any Process” requiring a valid code signature, Little Snitch considered the unsigned process as case of likely tampering and inserted a high priority deny-rule. We now just skip the matching rule and act according to Silent Mode (allow or deny).

If the matching rule requires a particular code signature (from a particular developer), we still consider it as case of likely tampering and add a high priority deny rule. The process has been seen with a valid code signature before, so the code signature must have been removed.

Bug Fixes

• Fixed: The status of rule groups “macOS Services” and “iCloud Services” was not preserved across restarts.
• Fixed an issue causing random crashes of the connection alert or the Network Monitor.
• Fixed a bug causing a hang during login under some rare circumstances.

Improvements

• Further improved visual appearance in Dark Mode of macOS Mojave.
• Improved visual appearance when the Accessibility option "Increase contrast" is active.
• Improved overall performance for large rule sets.
• Increased the maximum number of server names allowed in a rule group.
• Reduced CPU load generated by Domain Name lookups.

Bug Fixes

• Fixed a rare crash occurring during concurrent data model updates.
• Fixed an issue where Domain Name lookups were delayed or even blocked due to a high load or hang in Little Snitch.
• Fixed an issue where the connection alert could unexpectedly switch to another connection attempt without user interaction.
• Restoring to factory defaults also removes rule group subscriptions now.
• Various other bug fixes and improvements.