Arch Linux

doomsday.wombats

Member

Registered: 2017-01-17

Posts: 14

Gnome-shell outbound connection at boot

Not sure if this is the right spot for this. Just updated to gnome-shell 1:3.36.0-3. At boot, it makes a rather lengthy network connection:

tcp        0      0 10.0.0.87:38512         8.43.85.14:443          ESTABLISHED 1232/gnome-shell

Last octet of the address is different sometimes, but all are registered to RedHat.

Reverse DNS lookup:

oscp-router01.gnome.org
oscp-router02.gnome.org

Interesting "gestures" connection here:
https://wiki.gnome.org/Sysadmin/Servers

I thought I'd disabled all the phone home stuff in:

/etc/NetworkManager/NetworkManager.conf

But apparently not...anyone know how to stop this?

seth

Member

Registered: 2012-09-03

Posts: 60,984

Re: Gnome-shell outbound connection at boot

I've no idea what that is (google finds it, but the comments are inconclusive) - nmap on 8.43.85.13/14 frankly looks like a honeypot.

1. wireshark the connection
2. block the IP and domain (resolve it to 0.0.0.0) and see what fails and whether gnome complains about anything.

---

How to upload text · How to boot w/o GUI · Disable Windows Fast-Start! · Fix your xinitrc

doomsday.wombats

Member

Registered: 2017-01-17

Posts: 14

Re: Gnome-shell outbound connection at boot

Blocked it via IPs. Network analysis is led me to an update check for the new extensions app. There's a DNS lookup for extensions.gnome.org and nslookup reports:

extensions.gnome.org	canonical name = openshift.gnome.org.
Name:	openshift.gnome.org
Address: 8.43.85.13
Name:	openshift.gnome.org
Address: 8.43.85.14

IPs match the two it tries.

Did some seaching, this site says the following:

Helpfully, GNOME Shell 3.36 even checks for extension updates on start-up and will install/apply an update if needed. This means you will always be running the latest versions of whichever add-ons you use — nice!

I see no way of turning this functionality off at first glance...at least the sourcecode is available:
https://gitlab.gnome.org/GNOME/gnome-sh … st_iid=945

Important bit:

    _installExtensionUpdates() {
        FileUtils.collectFromDatadirs('extension-updates', true, (dir, info) => {
            let fileType = info.get_file_type();
            if (fileType !== Gio.FileType.DIRECTORY)
                return;
            let uuid = info.get_name();
            let extensionDir = Gio.File.new_for_path(
                GLib.build_filenamev([global.userdatadir, 'extensions', uuid]));

            FileUtils.recursivelyDeleteDir(extensionDir, false);
            FileUtils.recursivelyMoveDir(dir, extensionDir);
            FileUtils.recursivelyDeleteDir(dir, true);
        });

Not sure I understand the if statement there, hopefully it's as simple as deleting a file/folder.

Edit: There is no way to turn this off. I added a key to gsettings and added an if in the source. Pull request is up:
https://gitlab.gnome.org/GNOME/gnome-sh … uests/1099

Last edited by doomsday.wombats (2020-03-15 19:57:38)