- cross-posted to:
- linux@programming.dev
- cross-posted to:
- linux@programming.dev
I saw the news about Little Snitch coming to Linux via eBPF and Rust. On paper, it looks fancy. In reality, the backend is closed source.
Personally, I don’t see the point in installing a proprietary black box to monitor other black boxes. I’m sticking with my AdGuard Home setup and OpenSnitch for when I actually need to trace a binary.
I wrote up my thoughts on why I think this is a solved problem for most FOSS-first home labs.
Little Snitch has nothing to do with ad blocking. I don’t know what you’re talking about.
Little Snitch is literally used for blocking ads as well as other network traffic. My main point was that you don’t have to use it for blocking the other traffic, because Linux systems won’t have unwanted traffic to begin with, since you have full control over it. And for the ad part, there’s better solutions than network-level filtering if you have control over your browser.
So is it more that you don’t know what I’m talking about or that you don’t want to, for whatever reason?
Little Snitch is a application based firewall for outgoing connections. It is not mainly an Adblock of any sorts. It may be used that way with filter lists, but that is in no way it’s primary goal or purpose.
That is kinda naive, and absolutely depending on what software you install and use. Thinking „there can be no unwanted traffic on my system, as I use Linux and am in full control“ means you either have VERY high faith no application on Linux calls home ever, or vastly overconfidence in yourself and your system. If there was absolutely no use in applications like little snitch, things like OpenSnitch or Portmaster would not exist for Linux either.