I installed Volumio on a Pi and plugged it into my Strict Isolation LAN segment; as soon as I did the firewall log started filling up with packets destined for OpenDNS. When I allowed access to OpenDNS the logs showed requests to all manner of servers, including:
$ whois 142.93.107.218 | grep -i organization
Organization: DigitalOcean, LLC (DO-13)
$ whois 198.55.111.50 | grep -i organization
Organization: QuadraNet Enterprises LLC (QEL-5)
$ whois 192.73.248.134 | grep -i organization
getaddrinfo(rwhois.as3236.net): Name or service not known
Organization: NetActuate, Inc (NETAC-4)
$ whois 173.71.69.215 | grep -i organization
Organization: MCI Communications Services, Inc. d/b/a Verizon Business (MCICS)
$ whois 199.180.133.100 | grep -i organization
Organization: Wowrack.com (WOWTEC-1)
Organization: Virpus (VIRPU-14)
$ whois 149.210.234.235 | grep -i organization
(No ‘Organization’ was returned on this one; the best identifier I see is “netname: TRANSIP-NL-AMS4-CUST”
$ whois 151.101.65.195 | grep -i organization
Organization: Fastly (SKYCA-3)
Why does Volumio need access to all of these servers?
$ whois 142.147.92.5 | grep -i organization
Organization: xTom (LL-316)
$ whois 192.73.244.251 | grep -i organization
getaddrinfo(rwhois.as3236.net): Name or service not known
Organization: NetActuate, Inc (NETAC-4)
$ whois 204.2.134.163
Pacific Data & Telephony (BBBA-204-2-134-0) BBBA-204-2-134-0
204.2.134.0 - 204.2.134.255
NTT America (NETBLK-BBV4-204-2-128) BBV4-204-2-128 204.2.128.0 - 204.2.143.255
$ whois 216.6.2.70 | grep -i organization
Organization: TATA COMMUNICATIONS (AMERICA) INC (TCA-51)
The packets sent to most of these addresses appear to be NTP requests - UDP to Port 123: DST=204.2.134.163 LEN=76 TOS=0x00 PREC=0xC0 TTL=63 ID=18477 DF PROTO=UDP SPT=123 DPT=123 LEN=56
The packets going to DigitalOcean appear to be HTTP requests (TCP going to Port 80): DST=142.93.107.218 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=58237 DF PROTO=TCP SPT=58958 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0
If you can tell me what’s going on from this, please do. If you need more information then please tell me how to capture more of the packet details.
well, I installed volumio some time ago but did not read their privacy policy. hmmm, I should have done that before : Privacy Policy of Volumio · Volumio
To be honest, everybody wants to keep his data safe, especially the personal data… that personal data. But after I read the policy, there where two options for me : accept it or leave it. Thats what they offer you as choice.
Well, I have nothing to hide at all, but sharing all my contacts, my facebook data (at least that, whats left over till now), any twitter something… guys, really ?
But realizing, that volumio is some kind of cool software, there must be an option no. 3…
Guess what ? Thank You @RFisMagic for providing the list of IP adresses. I will give it a try and enter all of them into a list. Some blackish list, as they are called… when I remember well ?
Dear guys of volumio : here is my idea for a (imho) better and more user data friendly way…
Provide a 30 day testperiod for volumio
After 30 days, the user has to pay on yearly basis something like 10-20 dollar or euro, whatever.
If anybody wants to use some fancy special features, let them pay, as they do already now.
Out there are some other companies, providing almost the same kind of software like you do. But there is not such a horrifying privacy policy, that allows you (or any third party company) to collect my data for what ever. Do it like they do !!