Ledger Live – Umgekehrte Firewall-Ergebnisse

[root_s2yse8vt]

Up

-1

Down

::

Hallo,

Wenn ich Ledger Live auf einem Mac ausführe, zeigt die Little Snitch Reverse Firewall folgendes an.

Ledger Live hat vor dem letzten Update die folgenden Domainaufrufe gemacht, wenn es gestartet wurde:

ledger.app

fontawesome.com

githubusercontent.com

googleapis.de

ledger.de

braze.eu

compound.finance

segment.io

sentry.io

statuspage.io

​

Ledger Live macht nach dem letzten Update die folgenden Domain-Aufrufe, wenn es gestartet wird:

ads-twitter.com

bing.com

cloudflare.de

dwin1.com

fontawesome.com

ggpht.com

githubusercontent.com

google.de

googleapis.de

googleoptimieren.de

googletagmanager.de

gstatic.de

hotjar.de

mpactcdn.com

onetrust.de

redditstatic.com

tiktok.com

yimg.com

youtube-nocookie.com

ytimg.de

zemanta.com

braze.eu

ompound.finance

segment.io

contentsquare.net

criteo.net

doubleclick.net

facebook.net

sc-static.net

typekit.net

adsrvr.org

cookielaw.org

teads.tv

​

Es werden jetzt Verbindungen zu Domains hergestellt, von denen ich nicht wissen will, dass ich ein Ledger-Gerät habe!

Was machen die denn da, FFS?

[[deleted]]

Up

0

Down

::

Let me check. Will junk ledger if this is true.

Edit: Update: While checking I only found reference to Segment.io (a customer data platform) and brave.eu that were questionable. And these calls were there even in earlier version. So I am not sure where the OP got all those calls from the updated software.

I think a CDP like segment.io should not be part of a sensitive financial software. Take for example banks, they do not apply 3rd party hosted CDP or analytics on their post-login sensitive area of the website or even banking apps.

Anyways, I need to spend more time on it. Will do later and update again.

[Separate-Forever-447]

Up

0

Down

::

I’m running Ledger Live 2.58 and see a set of connections more like the first list you presented.

Ledger Live offers the ability to run dApps inside the application, so connections could vary depending on what the user is interacting with?

Still… facebook, google, twitter? I’d block those and avoid using such dApps. haha.

[asc9ybUnb3dmB7ZW]

Up

0

Down

::

fwiw I ran a test with Ledger Live 2.55.0 and then 2.58.0 and little snitch and definitely did not see any of these crazy domains (eg, tiktok, facebook or any of these ad services).

I don’t have any ‚Apps‘ installed though, and after reviewing this, went into the settings to disable analytics and the ‚carousel‘ feature.

[techma2019]

Up

0

Down

::

It gets even better: Ledger holds onto your IP and transaction info for 5 years.

https://www.ledger.com/privacy-policy#:~:text=Use%20of%20Ledger,years%20from%20collection

[ardevd]

Up

0

Down

::

Not seeing the same on my end. Just saying

[JustSomeBadAdvice]

Up

0

Down

::

[The code is open source](https://github.com/LedgerHQ/ledger-live/). You can probably go check what they are doing. Hell you could run it in a debugger and break every time it makes a request.

[RedditIsToxicSewage]

Up

0

Down

::

tiktok? facebook?

WTF?

[Express_Vacation_]

Up

0

Down

::

How did you find this? That’s quite bad if true would like to try myself

[Vegetable-Ad7263]

Up

0

Down

::

I also did this exact same thing yesterday, but got less unrelated sites.
What amazed me were the attempts to connect when generating my wallet ID tio transfer into it..

[mostly_harmless666]

Up

0

Down

::

Their grave just keeps getting deeper. With the backdoor on our wallets and them deleting their tweets, I am still waiting on an email from them about my refund.

[fnetma]

Up

0

Down

::

Don’t use ledger live. There are other desktop clients that work with a ledger device.

Also, look for a new hardware wallet.

[tchofs]

Up

0

Down

::

my Bitbox arrived today and its beautiful

[loupiote2]

Up

0

Down

::

You dont have to Use ledger live. Except to install apps.

I personally never use it

[LiveDirtyEatClean]

Up

0

Down

::

Switch to Sparrow Wallet for now with your own bitcoin node.

[[deleted]]

Up

0

Down

::

Can somebody confirm OP‘s Information?

[RollickReload]

Up

0

Down

::

“Trust me, Bro!”

[HokieScott]

Up

0

Down

::

I doubt it is calling out to TikTok and a few of the others.

[New_Cartographer8865]

Up

0

Down

::

Maybe some dapps or something? Ledger live is kind of bad anyway, some electron bullshit, but this time it’s a bit some bad faith since it’s actually open source https://github.com/LedgerHQ/ledger-live

So the least would be to check the source to understand where it comes from, because if no one does for a basic web tech, what people expect from an open source firmware written in c, with some specific call from the secure element sdk?

[Sziom]

Up

0

Down

::

Buy an air gapped wallet and your issue will be settled. Ordered mine after the bad explanation from ledger, over the last few days. No need to vent, just go out and buy a new device. Let the mindless pay the 9.99 subscription.

[Ok_Process777]

Up

0

Down

::

omg my wallet is tiktok famous yasssssss

[[deleted]]

Up

0

Down

::

[deleted]

[Prestigious_Ear505]

Up

0

Down

::

My Gf has ledger live on her iphone…
Open mobile ledger live, go to wallet, click on upper right Settings, then click on question mark in upper right corner, will show Ledger Resoursces. FB, Github, and Twitter are there.

[hautdoge]

Up

0

Down

::

Have you compared the Trezor app with Little Snitch?

[Plastic_Feed7917]

Up

0

Down

::

It has turned into a spyware

[Journeymanproject]

Up

0

Down

::

Ledger has now fully interfaced with Gary Gensler’s asshole.

[Average_Life_user]

Up

0

Down

::

Bro tik tok 💀

[comfyggs]

Up

0

Down

::

Aaaaaaaah ANOTHER FUCKUP HEY LEDGER ! Wankers. NOT TO BE TRUSTED. TRASH COMPANY 🖕🖕🖕🖕🗑️🗑️🗑️🗑️

[ZoomBoy81]

Up

0

Down

::

Every bloody ad network and tracking integration on the planet. Hotjar, they can potentially record every session and watch.

[bcryptos75]

Up

0

Down

::

Ok Time to create me a paper wallet, bye ledger and gfu

[comfyggs]

Up

0

Down

::

FUCK YOU LEDGRR CUNTS!! TIK TOK? facebook? GO FUCK YOURSELVES

[dicknorichard]

Up

0

Down

::

The thing is I am not seeing anything Ledger addressing it

[pantuso_eth]

Up

0

Down

::

Wow, what’s going on with this?

[skeng1up]

Up

0

Down

::

People already freaking out solely cause this one random redditor said so is saying alot. Would be good to see what results other people get and also have screenshots.

[aiolyfe]

Up

0

Down

::

Damn. Time to move to Trezor.

[AdUnhappy6621]

Up

0

Down

::

Tiktok…

[Which-Occasion-9246]

Up

0

Down

::

Is this true?

OP can you provide a screenshot? Some people cannot replicate your results.

[Tommycoli]

Up

0

Down

::

This has to be a joke

[shnoozed]

Up

0

Down

::

What if I don’t update?

[Autor]

Beiträge