fabston / little-snitch-blocklist Goto Github PK

Describe the bug

When attempting to subscribe to the blocklist in Little Snitch v4 and v5, it prompts with an error, saying "An error occurred while loading the rule group. Too many rules, hostnames, or domains in rule group (more than 200,000)."

Steps to reproduce

Subscribe to https://blocklist.fabston.dev/rules

Expected behavior

Expected the blocklist to be created without an error.

Environment

• OS: macOS 11.6.1 & macOS 10.15

Additional context

.

Which domain should be removed?

click.redditmail.co


m

Why should the domain be removed?

I receive article summaries in an e-mail from Reddit from groups and topics I follow.

Clicking on the link in the e-mail to go to the article fails because of this rule. See the screenshots. Discovered this by testing with both Edge and Safari on Mac and then the same link on my iPhone. The link connects on iOS, but fails on Mac OS. Please take a look at some of the other Reddit links as some may be benign.

https://blocklist.fabston.dev/ doesn't work

As of Little Snitch 4.2, blocklists can be a lot more compact

I have done this for my own blocklist which just got Little Snitch support:
https://github.com/ph00lt0/blocklist/blob/master/little-snitch-blocklist.lsrules

See docs: https://help.obdev.at/littlesnitch4/ref-lsrules-file-format

Little Snitch 5.6 enforces a 200k entry limit per rule groups, and as of today the list is 202k+ entries, which causes Little Snitch refusing to load the most recent rule group.

Can we prune the blocklist and/or split it up in two?

Which domain should be removed?

The rules in your ruleset contradict each other about whether connections to these hostnames should be allowed or not. One rule in the Fabston Blocklisdt denies connections to domain dpm.demdex.net while another rule mDNS Responder allows any connection.

Why should the domain be removed?

mDNS Responder is a LOCKED SYSTEM RULE in Little Snitch that allows all connections. It cannot be edited to add an exception for dpm.demdex.net at 162.252.172.57.

I have no real idea what any of this stuff does, as I am not a programmer or engineer. So I have a very vague idea that mDNS Responder must be allowed to connect.

I am running a registered copy of Little Snitch 5.5 and encountered "An error occurred while loading the rule group" when trying to install this blocklist.

Too many rules, hostnames or domains in rule group (exceeded the allowed maximum of 200,000 entries).

I believe this happened in this commit

Hi,

The subscription to the ruleset found at https://raw.githubusercontent.com/fabston/little-snitch-blocklist/main/blocklist.txt is failing.

The reason is there are 200,001 rules instead of 200,000 (please see attached screenshot). Updates attempts to existing subscription also have failed.

Could this be looked into please.

Thanks

Discussed in #8

I just faced with the Little Snitch 200.000-rule-limitation when I wanted to (re-)subscribe to my favorite and essential little-snitch-blocklist. Since the list keeps growing and has now apparently exceeded the 200.000-limitation, the subscription is unfortunately no longer possible. Is there a workaround, or could you split the list? Please, please keep the awsome Fabston`s list for Little-Snitch-users alive!