Do not get complacent. There’s information leaving your computer that Little Snitch can’t stop (via the default Apple connections which are allowed by default, or via special kexts installed to get around Little Snitch).

But it’s a lot better than nothing.

Just thought I would post my findings and this may help a few to understand… Little Snitch and the wild card thing!!!

I added a simple rule… Deny All Applications from connecting to DOMAIN “adobe.com”… I used Adobe because they have a large network, ideal for demonstrating this feature… ;-)

All of the IP addresses followed by “via DOMAIN adobe.com” in the list below, were retrieved by Little Snitch on creating the rule DOMAIN “adobe.com”… You can get the IP addresses retrived by clicking the info symbol in the top right of the Little Snitch window…

I then added a bunch of deny by HOST rules for sub domains of adobe.com… All of the lines / IP adresses that do not have “via DOMAIN adobe.com” are from these rules…

I have combined all the returned IP addresses from the DOMAIN adobe.com rule and sub rules together as a list – see below.

As you can see from the list I needn’t have added all of the rules for subdomains of “adobe.com” because it seems Little Snitch had that covered when I hadded “adobe.com” as a domain rule…

Note: I did a few tests tweaking subdomains IP addresses via the hosts file and it seems like Little Snitch keeps it self up to date with DNS changes to domains…

Little Snitch keeps me happy and is perfect at what it does, Snitching on your apps when they want to talk to the world… It puts you in control which is how it should be, it’s your computer and network connection after all…

The list
–
66.235.132.154 via DOMAIN adobe.com
66.235.132.156 via DOMAIN adobe.com
66.235.132.158 via DOMAIN adobe.com
66.235.132.233 via DOMAIN adobe.com
66.235.133.24 via DOMAIN adobe.com
66.235.133.44 via DOMAIN adobe.com
66.235.133.46 via DOMAIN adobe.com
66.235.133.48 via DOMAIN adobe.com
66.235.136.149 via DOMAIN adobe.com
174.143.230.172 via DOMAIN adobe.com
192.150.8.45 via DOMAIN adobe.com
192.150.8.60
192.150.8.60 via DOMAIN adobe.com
192.150.8.100 via DOMAIN adobe.com
192.150.8.117 via DOMAIN adobe.com
192.150.11.30
192.150.11.30 via DOMAIN adobe.com
192.150.14.21
192.150.14.21 via DOMAIN adobe.com
192.150.14.69
192.150.14.69
192.150.14.69 via DOMAIN adobe.com
192.150.14.174
192.150.14.174 via DOMAIN adobe.com
192.150.16.54
192.150.16.54 via DOMAIN adobe.com
192.150.16.59 via DOMAIN adobe.com
192.150.16.60 via DOMAIN adobe.com
192.150.16.72 via DOMAIN adobe.com
192.150.16.103
192.150.16.103 via DOMAIN adobe.com
192.150.16.108
192.150.16.108 via DOMAIN adobe.com
192.150.16.116 via DOMAIN adobe.com
192.150.16.117 via DOMAIN adobe.com
192.150.17.247
192.150.17.247 via DOMAIN adobe.com
192.150.18.63
192.150.18.63
192.150.18.63 via DOMAIN adobe.com
192.150.22.22
192.150.22.22 via DOMAIN adobe.com
192.150.22.30
192.150.22.30 via DOMAIN adobe.com
192.150.22.40
192.150.22.40 via DOMAIN adobe.com
209.46.39.53 via DOMAIN adobe.com