Hardware - Support > Network

Wireshark detected ongoin traffic on Linux lite clean installation, phonin home"

(1/4) > >>

trinidad:
Congratulations. Your research and effort answered your question. Please mark this as solved.
https://www.linux.com/topic/networking/introduction-ss-command/
TC


phili:

--- Quote from: phili on January 15, 2024, 03:41:28 PM ---For the new ones reading this, i installed a new clean linux lite installation, in a different vm, with internet access from the start, and the answer is that the canonical UK connection one is another NTP protocol  as the Regional NTP protocole one i mentioned before(the "University" server, thats just a server that a Universtity here in my country uses to serve open source NTP connections, you can read more about the NTP initiative on wiki if youre interested), is a normal connection that some distros or OS do in order to update correctly their internal clocks.

As an example, sometimes the browser navigators(as chrome, firefox or brave), give errors when the internal computer or OS time isnt right, and one of the reasons of it is because the NTP protocol isnt working propertly(Or sometimes is just an program that have to be updated eg: you have an old version of chrome or firefox, etc and needs to be updated).

So for that is needed the NTP protocol connection.

Theres not a telemetry per se connection, nor a data connection, just an update internal clock/time connection.

The reason debian and arch doesnt do it by default(in arch one has to disabled the network first helper connection), is because they do it from time to time, not inmediately when one is connected to the internet. Theres some advantages and disadvantages for that. But for most people is important that the OS make a first NTP connection in order to keep all the programs updated and up and running(mostly the ones that needs internet as the example i did previously with the browsers).

Edited 1: In arch one must first disable the network automatic connection one, in order to "not make" any outside innecesary connections, and in this case, most people dont do this, so if you see some outside connections there, is just a network protocol that you can disable if you want.

LTDR:

So, case closed, the two outside connections are just NTP protocol connections that is required in all OS(in this case Distros), in order to function properly with the internet and some apps and programs. Some distros make it automatically some make it just when one open a browser or press the update button, or if theres some programed updates too.

--- End quote ---
Heres some screenshot of the new installation showcasing better the NTP protocol. So, problem solved.

Edted 1: Linux lite is one of my first Linux distro that i used for main desktop work(programming stuff), and recently i wanted to install it again to see if i can make it work properly with docker and stuff. So all this concerned comes from a guy that really loves this distro, and is good to know this distro is doing what it says, is a stable distro with the minimal ubuntu stuff needed to work(As is linux mint), but personally this distro is more easy to follow than mint, and is easier to use (or is just preference idk). Anyways, case solved. See ya.

phili:
For the new ones reading this, i installed a new clean linux lite installation, in a different vm, with internet access from the start, and the answer is that the canonical UK connection one is another NTP protocol  as the Regional NTP protocole one i mentioned before(the regional University server, that here in my country is used to serve the open source ntp protocol), is a normal connection that some distros or OS do in order to update correctly their internal clocks.

As an example, sometimes the browser navigators(as chrome, firefox or brave), give errors when the internal computer or OS time isnt right, and one of the reasons of it is because the NTP protocol isnt working propertly(Or sometimes is just an program that have to be updated eg: you have an old version of chrome or firefox, etc and needs to be updated).

So for that is needed the NTP protocol connection.

Theres not a telemetry per se connection, nor a data connection, just an update internal clock/time connection.

The reason debian and arch doesnt do it by default(in arch one has to disabled the network first helper connection), is because they do it from time to time, not inmediately when one is connected to the internet. Theres some advantages and disadvantages for that. But for most people is important that the OS make a first NTP connection in order to keep all the programs updated and up and running(mostly the ones that needs internet as the example i did previously with the browsers).

Edited 1: In arch one must first disable the network automatic connection one, in order to "not make" any outside innecesary connections, and in this case, most people dont do this, so if you see some outside connections there, is just a network protocol that you can disable if you want.

LTDR:

So, case closed, the two outside connections are just NTP protocol connections that is required in all OS(in this case Distros), in order to function properly with the internet and some apps and programs. Some distros make it automatically some make it just when one open a browser or press the update button, or if theres some programed updates too.

phili:

--- Quote from: trinidad on January 15, 2024, 09:13:32 AM ---Well you didn't really ask a question but formed it more like an accusation, and one that now clutters the forum, so yes you created a stupid and falsely founded meme with your reference "phoning home". I gave you a simple first step test answer, but did you bother to try changing mirrors and run a new scan? There are very easy ways to track down what's actually connecting to your computer already included in Linux Lite other than wireshark.
TC     

--- End quote ---

So, you care about the forum but use tough words to make it more friendly?, great stuff men, good job. Read again my first post, theres at least 4 questions in it, i was making a question, i wasnt accusing per se, and i indicate it as a question post(with the question symbol), not an informational one, so even in the type of post, im indicating as a question, now, isnt my fault that this post can even be deleted(as i mentioned before that ill be deleting this post if theres no detailed anwser), or even the title of the post can be modified if that whats upset you about, except my own comments in it, and your anwser just make it better for the new ones reading it, nice job.

And really, youre appearantly not the mantainer of the Distro, so why you anwser me?, and why youre here to help in a friendly forum if youre not a friendly helper? To this comment theres no single tough word i used.

And now i simply want to delete all this. if i was a community helper in a distro community, i certainly at least, give a more complete answer to the public, not dry short words. I started by example to explain what is a mirror, and why is important to change it in order to verified if that connection repeat again, and a possible explanation of why the first canonical in UK connection happened before in the first place. Reread all your post, theyre all dry short non explainable anwsers.

Good job. Keep it up the good work. Even if theres no connection per se, your answers and the words you used are the ones that make this post a not friendly one. Every forum has posts with people in their "ignorance" question stuff. And thats not a reason for it.

Note: You can ban me, at least that could be a way to delete this post and delete my profile, if youre still worried about it, that by the way, i cant delete(theres no delete profile option in the actions tab-like button in the profile section).

trinidad:
Well you didn't really ask a question but formed it more like an accusation, and one that now clutters the forum, so yes you created a stupid and falsely founded meme with your reference "phoning home". I gave you a simple first step test answer, but did you bother to try changing mirrors and run a new scan? There are very easy ways to track down what's actually connecting to your computer already included in Linux Lite other than wireshark.
TC     

Navigation

[0] Message Index

[#] Next page

Go to full version