I tried searching for answers as to why these machines are reaching out to numerous locations despite not using PrusaConnect. Location lookup returns the expected Czech, as well as location across the US. I recently also set a friend up with with an Elegoo printer and that was expectedly noisy as hell, but I was surprised with Prusa being the ‘privacy pick’.
For those curious, here’s the logs since about midnight, it seemingly doesn’t talk during the day.
209.51.161.238:123
195.113.144.238:123
23.150.41.122:123
193.29.63.226:123
162.244.81.139:123
64.246.132.14:123
172.104.182.184:123
66.85.78.80:123
68.234.48.70:123
129.250.35.250:123
You must log in or register to comment.
Prusa recently partnered with an Israeli company called Fillament2 during the genocide so you already know what’s up.
What is up?
123 is NTP, used for time synchronisation. Often a pool of servers is used.
Bang on. Something is trying to update its clock.
OP, I suggest you ok that traffic, but if you want to lock it down allow *.pool.ntp.org and *.(Your country prefix).pool.ntp.org
Or spin up your own NTP server and NAT those requests to it.
Again, why would a printer need a clock for?
Anything that connects to the network needs a synchronized clock with other devices it directly communicates with in order to make sure it’s not being subjected to timing attacks. This has been standard practice for 25 years, maybe more, in the end user world because some high profile computer screw ups made use of it. People with weird systems, off the gridders of olde and ppl still on dial up in the teens had some interesting problems to solve when generally all ISPs got drug kicking and screaming to the table by os updates that made synchronized clocks a non negotiable requirement.
Ofcours, to print time
If it’s a multifunction, printing the time/date on the fax.
It is a 3D printer
To show the expected completion time of the print.
Why would a printer need time? The only think that cames to mind is freezing cartridges after x months.
You want any device that does crypto (like verifying a certificate) to have a synchronized clock.
Prusa is a 3d printer. It can be to show the date, check the validity of certificates, show in logs, or just tell you when your print will be done.
AFAIK the firmware is open source so ultimately you can look exactly what it does with it. Same as any Linux system, really.
Probably some legit uses eg direct from file prints with filename and timestamp, but also there’s the yellow tracking dots: https://en.wikipedia.org/wiki/Printer_tracking_dots
Printer isn’t responsible for timestamps on your document. If that would be regarding tracking dots, then block it anyway, right? And if it’s a 3d printer then it still doesn’t need to have correct synchronized time, it only needs to be able to count how the time passes.
No idea about the connections but did you just censor your local IP address??
Good opsec, really.
Edit: also I just realized this is the Privacy community lol
There is no opsec in censoring RFC1918 private addresses. There is absolutely no PII involved 🤣🤣🤣
I was taught in my IT Sec classes to avoid sharing any unnecessary information. Information on private IPs can be used to better understand your network, allowing a threat actor to better navigate your network without needing to do ip scans (which are very obvious and should trigger even basic detection). While it is most likely pointless (since OP probably isnt at risk of targeted attacks), it is still good opsec.
Purely theatrical and serves no purpose or benefits. Any TA that penetrates the network would discover those subnets instantly.
Performative opsec
Yep this is just NTP, nothing nefarious. If you have a “good” router that has an NTP server and can set the related DHCP option, try setting that. The servers it uses might be hardcoded, but I believe it will honor the DHCP lease.
