I have Little Snitch active for all internet traffic on my laptop. Since installing Firefox v57 a great number of web sites I've visited in the past (a seemingly unending list) request advance permission to make contact with Firefox or vice versa every time I re-start the browser! That's hundreds of LS action requests each time I load Firefox. The only way I could stop this was to create a permanent rule to deny actions for every one of those sites, one after the other, which took close to an hour. Really.
Now if I want to re-visit one of those sites I have to go into LS, search for the domain name and delete the current rule for the site. Then re-add the site before closing Firefox. Insane!
Please, someone - tell me how to stop Firefox from 'pre-checking' these sites (which I assume are being checked because they are in my 'History'). It's a ridiculous 'feature'.
- thanks
persistent web site domain requests (via Little Snitch)
-
- Posts: 16
- Joined: March 9th, 2013, 2:39 pm
- Reflective
- Posts: 2283
- Joined: February 15th, 2007, 11:13 am
Re: persistent web site domain requests (via Little Snitch)
It's not Firefox which is causing that behaviour, but rather your Little Snitch app. They even tell you they're doing it. On their site it reads as follows:
So that last sentence is saying that you don't normally see these connection attempts. But then, there's this titbit:
It sounds to me like an app for the paranoid.
Code: Select all
As soon as you’re connected to the Internet, applications can potentially send whatever they want to wherever they want. Most often they do this to your benefit. But sometimes, like in case of tracking software, trojans or other malware, they don’t.
But you don’t notice anything, because all of this happens invisibly under the hood.
Code: Select all
Little Snitch makes these Internet connections visible and puts you back in control!
- RobertJ
- Moderator
- Posts: 10880
- Joined: October 15th, 2003, 7:40 pm
- Location: Chicago IL/Oconomowoc WI
Re: persistent web site domain requests (via Little Snitch)
It is a simple outbound firewall that is for Mac.Reflective wrote:It sounds to me like an app for the paranoid.
That makes no sense. Sites do not "contact" FF unless there is a HTML request from FF like going to a bookmark or clicking on a link.machi1x wrote:I have Little Snitch active for all internet traffic on my laptop. Since installing Firefox v57 a great number of web sites I've visited in the past (a seemingly unending list) request advance permission to make contact with Firefox
The Little Snitch configuration for FF is trivial.
Allow outgoing TCP connections to port 80 (http)
Allow outgoing TCP connections to port 443 (https)
When you launch FF there should be no requests unless you have turned on FF data collection and, at most that will generate one or two requests.
.
FF 92.0 - TB 78.13 - Mac OSX 10.13.6
-
- Posts: 16
- Joined: March 9th, 2013, 2:39 pm
Re: persistent web site domain requests (via Little Snitch)
Thanks to Mod RobertJ for your response. Sounds like I need to speak with LS for an explanation.
- best
- best
- dickvl
- Posts: 54163
- Joined: July 18th, 2005, 3:25 am
- Gingerbread Man
- Posts: 7735
- Joined: January 30th, 2007, 10:55 am
Re: persistent web site domain requests (via Little Snitch)
Check if the problem occurs when you start Firefox in Safe Mode. If it doesn't, one of your add-ons is to blame.machi1x wrote:Since installing Firefox v57 a great number of web sites I've visited in the past (a seemingly unending list) request advance permission to make contact with Firefox or vice versa every time I re-start the browser!
If it does, it might be the New Tab page. Test the following.
- Into the location bar, enter
Code: Select all
about:config?filter=newtab*enabled
- Press the big button to bypass the warning.
- In the search results, double-click browser.newtabpage.activity-stream.enabled and browser.newtabpage.enabled to set them to false.
- Restart Firefox and check if the problem still occurs.
RobertJ wrote:The Little Snitch configuration for FF is trivial.
Allow outgoing TCP connections to port 80 (http)
Allow outgoing TCP connections to port 443 (https)
- TCP out 21 if you use FTP
- TCP out 8080 and 8081 if you use a proxy
- A very small number of sites use non-standard ports like 81-83, 182, etc.