HearthGate 1.10 is live

See every attempt to reach your Mac.

HearthGate 1.10 is a security-visibility release for Mac remote access. Connection history now shows the sessions that got in and the attempts that did not: rejected keys, revoked keys, invalid users, and suspicious probes. Key revocation, connection-rate controls, and backup restore checks are also stronger, so the access story is easier to trust when it matters.

Failed login attempts in plain sight

Connection Logs now include refused attempts in red, next to successful sessions. A Failed only filter helps you focus on suspicious activity without digging through unrelated history.

Optional alerts for rejected logins

Turn on alerts when you want to know the moment a login is refused. Notifications are rate-limited per source, so one noisy address does not become the whole day.

Revocation means revocation

Revoked keys stay revoked more consistently across restore, import, and VNC-only tunnel workflows. Per-key session limits are enforced more predictably too.

Safer backup restore reports

Restore now performs a pre-check, shows what was restored or skipped, and rolls back cleanly if a step cannot be applied instead of leaving access state half-restored.

Security visibility

Not just who got in. Who tried.

1.10 makes failed access visible before it becomes a mystery. A rejected key, an invalid username, a revoked credential, or a fast burst of connection attempts can now leave a clearer trail for review, export, and incident reconstruction.

Failed attempts

Denied access joins the audit trail

System Events now records denied key access more broadly, giving security reviews a fuller timeline of refused access, not only successful sessions.

Optional throttle

Connection-rate limiting

A new opt-in control can slow repeated SSH connection attempts from the same address without permanently blocking legitimate users.

Less ambiguity

Cleaner key status in logs

Active, revoked, parked, and unknown keys are distinguished more clearly, so temporary parking is not confused with a permanent revoke.

Operational examples

Where 1.10 changes the daily security picture

This release is built for the moments when a Mac is reachable from more than one place and you need to know what is happening around the gate, not only inside it.

Use case

You notice a single rejected login

Optional alerts can tell you about the first refused attempt before it turns into a noisy pattern or an automatic block.

Use case

You review access after a suspicious day

Use the Failed only filter to separate refused attempts from ordinary sessions, then export the record for review or follow-up.

Use case

You restore settings after a move or reinstall

HearthGate pre-checks the restore, reports exactly what happened, and rolls back if it cannot apply the intended access state cleanly.

Use case

You revoke keys in bulk

Bulk revoke results now report which keys succeeded and which did not, so cleanup work is not hidden behind a single vague outcome.

Security notes

Visibility before guesswork.

HearthGate 1.10 adds more signal around refused access and restore safety without turning the UI into a packet trace. The goal is simple: make it easier to prove what happened, what was blocked, and what state the Mac ended up in.

Learn about SILA, the codnamacs security lifecycle framework

Release notes at a glance

  • Connection Logs now show failed login attempts, including rejected keys, revoked keys, invalid users, and unknown access attempts.
  • A Failed only filter helps operators focus on suspicious activity and export the relevant review trail.
  • Optional rejected-login alerts notify on refused access attempts, with per-source rate limiting to avoid alert floods.
  • Denied key access is recorded more broadly in System Events for cleaner incident reconstruction and compliance review.
  • Key revocation is more robust across backup restore, settings import, and VNC-only tunnel workflows.
  • Optional connection-rate limiting can slow repeated SSH connection attempts from a single address without a permanent block.
  • Restore now runs a pre-check, reports restored or skipped items, and rolls back cleanly if a step cannot complete.
  • Settings apply more responsively, license reactivation messaging is cleaner, and connection logging is more tolerant of unusual system-log formats.

HearthGate 1.10

HearthGate 1.10 turns refused access into visible evidence.

Open HearthGate page