macOS Big Sur 11.2 beta 2 does not allow Apple apps to bypass VPN anymore

Apple seems to have fixed the issue with its first-party apps bypassing VPNs and firewalls in macOS Big Sur. The issue was reported back in November and seems to have been fixed in macOS Big Sur 11.2 beta 2, which was just released to developers and public beta testers yesterday.

The issue could have potentially allowed malicious apps to take advantage of the bypass mechanism and share data without any restrictions. A proof of concept was even demonstrated by the security researcher who had first reported the issue. A Reddit user had refuted these claims that Apple’s apps are bypassing VPNs, with details to back them up, however, it did not gather much attention.

macOS Big Sur 11.2

Apple removes ContentFilterExclusionList from macOS Big Sur 11.2 beta 2

When the issue was originally reported to Apple, they said that it was a design decision. Patrick Wardle, the security researcher who had reported this issue, had shared with the company that this change was a privacy and security issue. Apple has finally removed the ContentFilterExclusionList list from macOS Big Sur 11.2 beta 2, which means that first-party apps can no longer bypass firewalls and VPNs, and neither malicious apps take advantage of this.

Although the feature is available in the latest macOS Big Sur beta, it is still not available to all users. The stable macOS Big Sur still has this issue with firewalls and VPNs, and it is up to Apple to release macOS 11.2 to all users to fix this problem as it could have severe privacy and security implications.

Read more:

About the Author

Technology enthusiast, Internet addict, photography fan, movie buff, music aficionado.