In OS X, how does manually sandboxing an application from the internet compare to blocking it with Little Snitch?

macos mac network firewall sandbox

For most purposes, the following is good enough for most situations:

sandbox-exec -n no-network command

However, it's not more effective—there's numerous ways of apps escaping the sandbox. Little Snitch also lets you be more specific with what you are blocking—specific ports/etc.

Related

SSD upgrade for mid 2012 MBP
Macbook Pro.[Mid-2012] Sound isn't working
Is there any way of Filtering out messages from OS X system log?
I want to copy data from a text box under Settings, but drag and drop doesn't work. Is there a quick way to do it which is not OCR-ing the screen?
Time Machine file structure?
Yosemite Can't start Xcode 6.1.1 with error -10699
Updating to OS X 10.10.2 broke Quick Look previews for HTML files
Why am I getting command not found even though path to command exists in PATH variable?
Can't force quit frozen iTunes in OS X Yosemite
OSX Yosemite Finder sort by date modified wrong?
re expand a partitioned disk
How to open different emacs version from the shell?