Prefer a firewall program that's much stronger and user-friendly than the built-in Apple software programs so you're able to keep an eye on Internet connections from all apps as to expose the hidden connections, avoiding them from delivering data without your authorization, thus keeping away from information loss, then Metakine Hands Off is the perfect alternative.
Points: Metakine Hands Off! is 15% discount off now!
Metakine's Hands Off! is a software similar to Little Snitch in that it should alert you on outbound network connections, prompting you as to whether or not the connection need to be allowed.
Hands Off!, nevertheless, goes further than that. Not only does it intercept outbound traffic, it also protects on inbound network traffic. Yes, this largely reproduces the built-in OS X firewall program protections, but with Hands Off! you're able to recognize what programs are enabled, or stopped up, within just one tool. Beyond that, Hands Off! also alerts when programs would like to do simple items like DNS resolution - you can enable DNS resolution to specific domains and keep an app in the dark about other domains.
One more area that Hands Off! helps to protect is file accessibility. While Little Snitch only protects the network, Hands Off! also defends the file system. It intercepts when a software is trying to read or write to files on the system, making it possible to generate a flexible policy of what a program can access. This is particularly encouraged for unsafe programs such as web browsers - internet browsers should only access their very own preferences and caches if you do not expressly want them to gain access to something else (for example saving a file or uploading one).
If a criminal program is installed, Hands Off! helps prevent it from phoning home, listening on any ports for incoming traffic, and stop it from reading to or writing any files. This is welcome protection, specially in a time where applications make network connections behind your back all of the time, and read from and write to files they quite possibly shouldn't have access to.
Initially running it will likely be an exercise in frustration, however, for the reason that initial configuration is really sparse. So every software you run will get interrupted by Hands Off! at least once. However, taking a few minutes to read what it is informing you, to ensure that you are providing access that you want, is very important; you could set legitimate connections to be permitted eternally and you should never be requested again to confirm what an program should be doing, only when it's doing something you defined it shouldn't be doing.
Each app has a default protection preset, which lets you specify the defaults for network usage and file writing. Traditionally, and for the sake of efficiency, you may set a default Allow preset for file writing for trustworthy applications, and a default Ask for network usage, which will then enable you to exactly specify what ports and domains the application can hook up to.
On each alert, you can hit Enter to allow, and Esc to deny. This may permit, or refute, the operation until the application ceases and is restarted. This lets you stay away from making permanent adjustments to your policy if you haven't decided on what policy you choose, or if it's a software program that you would probably allow, but would like to know what it's doing before it does it.