Dear Apple,
I use Little Snitch (An application firewall) to manage exactly what websites/domains apps should be allowed internet access. And which sites shouldn't have any access.
Like in Safari or Mail ... I don't grand access to hostnames that include anything that can be derived to have an association to "Tracking" ...
say:
Little Snitch works like a charm. Or to say: It works until you don't enable "iCloud Private Relay".
With iCloud Private Relay turned on, it circumvents Little Snitch granting access to every site/hostname without checking with my "Application Firewall" - if it's allowed to have access to said site or not.
I guess this is because iCPR is 1st in the hierarchy over Little Snitch.
And it makes sense. If you don't have an Application Firewall running ... you want iCPR to be the 1st to intercept all connection activities.
But for us who do have an Application Firewall ... it doesn't. I wish to go into "Set Service Order" and drag Little Snitch to be 1st in this list ... then iCPR ... and then Ethernet 1 ... etc etc.
This way, I could 1st block any access to any "Tracking site" ... don't even let the app connect to it!
Since, why should they even have my data? Any data about me?! ... Even if it "anonymised", it's best to not give them any data at all. Null ... zilch! :-)
Could you please add/tweak this "Set Service Order" to allow/grant us, the users to choose how we would like to filter our connections.
cheers, Daniel
Could you please add/tweak this "Set Service Order" to allow/grant us, the users to choose how we would like to filter our connections.
If you want Apple to make a change, you should file a bug report through Feedback Assistant. However, in this case I recommend you start by discussing this with the Little Snitch folks. They’re almost certainly aware of this concern and are likely to be in a better position to drive improvements.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
