Announcement

Collapse
No announcement yet.

Blocking of unnecessary external connections from Internet

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Blocking of unnecessary external connections from Internet

    Hi All members

    Today, when I was checking for external connections to my computer, I saw many established connections from Akamai , Google LLC and Amazon.



    These are the sites that I didn't surf at all. I did some research on unnecessary or unauthorized connections and found an article on it which clearly
    blame spying as the main reasons for these unauthorized internet connections.

    http://www.matveev.se/net/akamai.htm


    I have use the programs like netstat and Pierre's program to perform these checks

    https://forum.powerbasic.com/forum/u...ng-to-internet

    Hence, I wonder if any member here have block these unauthorized connections such as Akamai before. And please describe your views on this issue.

    As for me, I have crafted Firewall rules to block these connections since these are unnecessary connections which can consume your computer resources
    without you knowing about them.



  • #2
    Akami is a large CDN, used - amongst others, by Microsoft. Both Amazon (AWS) and Google (Google Cloud) are basically "the internet" with their cloud storage services. Large parts of internet sides are hosted on these serices, even from major companies which in the past hosted their own webservers, but have figured out that it's more flexible, reliable and often cheaper to host their content there.

    Before you pull the trigger too early, I recommend to install uBlock Origin (is available for all major browers). It's an AdBlocker, but it lists exactly each host/domain is connected from the page. You'd be surprised who usese services from whom on his page. E.g. on almost any page you'll find googletagservices.com.

    Also: the first article you linked, although full of screen dumps from ARP, NETSTAT et al, sounds more like written by a conspiracy theorist than someone who actually knows what he's talking about. E.g.
    Avoid Google services, APIs, devices. They had already tried many times (see my Blog for details) to hack into my site but USA police (does it exist?) did nothing so far to stop cyber Bolsheviks (esp from Microsoft & Google) criminal activities.

    Most recent attempts came on 2 October 2018 from IP 35.229.249.135 and on 12 March 2017 from IP 52.168.175.163 (hiding as Googlebot/2.1!) and on 14 July 2018 (13.92.229.58, Microsoft and 2.20.73.35, Akamai EU). Simply can not waste my time adding more info from log files about their idiotic/criminal hacking into European web sites.

    In many cases Bolshevik hackers from USA use their European, Indian and Japanese affiliates for attacks.

    Cogentco/PSINet (149.14.125.50), 1&1 Internet (108.175.11.230), Contabo Gmbh (213.136.89.100), GoDaddy.com (198.12.152.136), Linode (173.230.149.246), Amazon Technologies (54.93.71.192) to name just a few MOST active in hacking on European sites!
    Really? Their "bolshevik affiliate hackers"? 1&1 is one of Germany's largest ISPs and hosting providers. GoDaddy. One of the largest web hosters in the U.S.

    I highly suggest that until you fully understand each and every technical detail he posted and have verified it for yourself, to distrust any such sites. We're engineers. We operate fact-based. Everytime you recon agenda driven slurs on sich pages, ignore the site. In this case e.g. "bolshevist". He also mentions "Israel" quite a bit, which sounds suspicously borderline antisemit to me.

    There are whole paragraphs that should make anyone's alarm to go off immediately:
    The Virus of Bolshevism is spreading faster than efforts to clean up its disastrous results: Marx, Engels, Lenin, Sverdlov, Bolsheviks streets in EVERY town in Russia and their Cheka butchers are still sitting in Kremlin.

    WHY should Europeans report ALL their banking (and other) activities to USA/Israel spy agencies??? And WHY should tax payers money be wasted on supporting the SLOWEST and most dangerous "black box" OS ("can of worms", using S.Jobs term) on this planet?
    Wait, WHAT?

    How can someone go from "bloshevik threat" to "USA/Israel spy agencies" in one sentences, because it's the polar opposite?!?

    Comment


    • #3
      The computer you have now is so much different than the one of 5 or 10 years ago. The OS and Software you have constantly phones home. Some of this communication is VERY useful to you (security updates, version checks, setting/data updates, etc.), some is pseudo-beneficial to you (usage statics that help the vendor make a better product). Some is outright spyware.

      Unless you KNOW what you are blocking, or leverage tools that can tell the difference for you, I'd be hesitant to start blocking. Especially from content delivery networks (CDNs) like Akamai. These tend to be legit sites helping to support your PC in the useful/pseudo-beneficial ways.
      <b>George W. Bleck</b>
      <img src='http://www.blecktech.com/myemail.gif'>

      Comment


      • #4
        Use TopLang Internet Lock.
        On the cheap, do it yourself. You might try making changes to the hosts file if you know the url your programs are accessing.
        In the hosts file, you can set the url to point to 127.0.0.1
        If you have software running as services. They will have system level privileges for the most part and they will be hard to block, remove them if needed.
        p purvis

        Comment


        • #5
          Essential net tools: https://www.tamos.com/products/nettools
          See what is running.

          Create a restore point

          Go into add remove programs
          Get rid of programs you know are no longer used or shouldn't be there.

          Run MSCONFIG
          Click on the services tab
          Sort using Manufacturer and uncheck obvious programs that shouldn't be there.

          Later, run essential net tools again and see what is running.
          You can get rid of most of the phone homers (that are looking for updates)

          Blocking safe providers could make your system less secure.
          It would be a good idea to remember to check for updates from those providers.

          I went through hoops to disable SearchUi.exe (trusted installer eliminated, etc.)
          Later found out I used it searching for functions within Windows. Getting rid of everything in Cortana was not a good idea.

          This current computer shows between 29 and 38 ports. 28 listening ports.
          1 remote port always connected is 443. Tracing the IP always goes to either msn.net or microsoft.com
          https://duckduckgo.com instead of google

          Comment


          • #6
            Thank you to all for the advice as when I blocked some IP ranges, then I found out that I couldn't surf some of the common websites that I normally do.
            To work around it, I have to use ping command to these specific websites and obtain their IP address and then unblock these specific ones for my needs.

            I also found that the Essential net tools are very handy as you can check and map out the usage of the ports.

            Comment

            Working...
            X