Wireshark detected ongoin traffic on Linux lite clean installation, phonin home"

Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - Printable Version

+- Linux Lite Forums (https://www.linuxliteos.com/forums)
+-- Forum: Hardware - Support (https://www.linuxliteos.com/forums/forumdisplay.php?fid=6)
+--- Forum: Network (https://www.linuxliteos.com/forums/forumdisplay.php?fid=24)
+--- Thread: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" (/showthread.php?tid=9027)

Pages: 1 2

Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - phili - 01-13-2024

Theres some outgoin connection in a clean install of linux lite, i installed wireshark to analyze the traffic, and theres some ips that automatically and frequently linux lite connects(talking about every 20 seconds or so), as a University server, and a cannonical server(phoning home to ubuntu?, i though you guys remove all the snap mainly to remove any tellemetry data, but theres some connections still in it), and a national server.

Why is that? and how can i remove those connections?, debian, and arch(when removin the default arch website connection), doesnt have any "telemetry" or connections in its clean default installation.

Also i tried another install and this time remove the google chrome default app, and even then still left same ip connections...

Some of those ips:

- 186.118.171.88 cronos.unad.edu.co apparently this a time clock synchronization project for linux servers, i guess is for online time synchronizity for the apps?
- 91.189.91.157 (canonical in London servers)

Really Appreciate any answer, and if theres some way i can make it very vanilla without any outgoing connections as debian or arch are, thanks.

Edited: Read about the ntp time indepent setting project, cool stuff, thats one check out of the box, every OS has to make some calls to syncrnoze the internal clock with real time to function its internet properly. there still the canonical connection one, any answer appreciate it, cheers.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - stevef - 01-13-2024

Quote:Why is that?

Difficult to be sure with the information provided, could be the canonical server traffic is related to checking for and downloading updates.
How are you identifying the traffic is 'telemetry' ?

Quote:how can i remove those connections?

Consider using an external independent firewall to control traffic.

Quote:some way i can make it very vanilla without any outgoing connections

To stop all outgoing connections disconnect the system from the internet.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - trinidad - 01-13-2024

https://about.rdap.org/
https://en.wikipedia.org/wiki/Registration_Data_Access_Protocol
Basically assures against privacy invasion. Good not bad.
TC

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - phili - 01-13-2024

(01-13-2024, 11:42 AM)stevef link Wrote:
Quote:Why is that?
Difficult to be sure with the information provided, could be the canonical server traffic is related to checking for and downloading updates.
How are you identifying the traffic is 'telemetry' ?

Quote:how can i remove those connections?
Consider using an external independent firewall to control traffic.

Quote:some way i can make it very vanilla without any outgoing connections
To stop all outgoing connections disconnect the system from the internet.

So why debian and arch doesnt have a home server connection even when connected to the internet?

About telemetry read the context, i was talking about snap and canonical connections.

You mentioned updates as the reason why theres some canonical connections(UK server of canonical), but arent the linux lite updates filtered and provided by the linux lite mantainers?, why have to be connected directly from canonical?

Edited: also, i was about to send a screenshot but the forum doesnt allow any img format file to submit, and to copy and paste all the information.
Edited 2: Sended the screenshot in a 7zip format in order to be able to submit here. Noted that i dont talk about the other connections as theyre local normal network connections, just the one already mentioned(the canonical one: 91.189.91.157 from the UK server).

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - phili - 01-13-2024

(01-13-2024, 01:39 PM)trinidad link Wrote: https://about.rdap.org/
https://en.wikipedia.org/wiki/Registration_Data_Access_Protocol
Basically assures against privacy invasion. Good not bad.
TC

I dont understand, do you mean, the canonical UK connection one? 91.189.91.157 ? is a protocol to ensure privacy connections and filtered?

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - stevef - 01-13-2024

Quote:So why debian and arch doesnt have a home server connection even when connected to the internet?

Someone who uses debian or arch may be able to help answer this.

Quote:arent the linux lite updates filtered and provided by the linux lite mantainers?, why have to be connected directly from canonical?

Specific Linux Lite software is provided by Linux Lite. Linux Lite is based on Ubuntu LTS so the canonical repositories provide support for that element of Linux Lite.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - phili - 01-14-2024

(01-13-2024, 09:13 PM)stevef link Wrote:
Quote:So why debian and arch doesnt have a home server connection even when connected to the internet?
Someone who uses debian or arch may be able to help answer this.

Quote:arent the linux lite updates filtered and provided by the linux lite mantainers?, why have to be connected directly from canonical?
Specific Linux Lite software is provided by Linux Lite. Linux Lite is based on Ubuntu LTS so the canonical repositories provide support for that element of Linux Lite.

What element of Linux lite is Ubuntu providing support? If you dont know how debian and arch isnt phonin home to their respecting servers, how were you so sure about that any Operating system has to be phonin home when is connected to the internet, as your phrase "To stop all outgoing connections disconnect the system from the internet." infering and in the context of that.

Im trying to understand the online connections of the system, i like linux lite, it is stable and it just works, but i like to analyze when a system is making connections in order to know which level of privacy it has. I dont really hate even ubuntu, and i dont have any preffered linux distro, just wanted to know how things work in any given Linux distro or OS for that matter.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - stevef - 01-14-2024

Quote:What element of Linux lite is Ubuntu providing support?

This command will show the repositories.

Code:
inxi -r

Quote:how were you so sure about that any Operating system has to be phonin home when is connected to the internet

Your original query asked for a way to stop ALL outgoing connections from the system. There can be no outgoing connections if the Internet is not connected. This would include outgoing telemetry if present, but nothing about telemetry should be inferred.

Quote:Im trying to understand the online connections of the system

You have the tools to determine exactly what your system is doing.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - phili - 01-14-2024

(01-14-2024, 07:25 AM)stevef link Wrote:
Quote:What element of Linux lite is Ubuntu providing support?
This command will show the repositories.

Code:
inxi -r

Quote:how were you so sure about that any Operating system has to be phonin home when is connected to the internet

Your original query asked for a way to stop ALL outgoing connections from the system. There can be no outgoing connections if the Internet is not connected. This would include outgoing telemetry if present, but nothing about telemetry should be inferred.

Quote:Im trying to understand the online connections of the system
You have the tools to determine exactly what your system is doing.

My original post has a edited section(that i made in minutes after the post sended) clarifying that I wondered about the canonical one, and theres just two outgoing connections and i said that the ntp one is out of the question, you didnt read well. And even after all this answers you dont know about the canonical one, youre as clueless as me(for what it seems), yet you answer as if you know it perfectly, yet not claryfication at all. thanks for your dry words, and see ya, dont worry ill erase this post, i made it, only to know this thing, and as the purpose of that isnt made, im done with it, see ya.

Re: Wireshark detected ongoin traffic on Linux lite clean installation, phonin home" - trinidad - 01-14-2024

Try a different mirror. By the way wireshark itself could be causing the connection depending on your actual location. Nothing is phoning home. Stop with the stupid meme.

Quote:I dont understand

You're right you don't. The only thing you can honestly assume is that you're not going pull a TLD cruncher in a scan without a reason. Most likely location is the issue. Try a different mirror.

TC