R1s are a Little Chatty...

godfodder0901 · Dec 23, 2023

I've been looking through my DNS sinkhole logs for the R1T. There are a few more entries than I thought that have been filtered. Specifically:

events.mapbox.com (obviously uses MapBox services, so makes sense)

device-metrics-us-2.amazon.com

firebaselogging.googleapis.com

sessions.bugsnag.com

Any of my other security-focused forum members seen any functionality impacted by blocking these destinations? And yes, I fully understand that this is an exercise in futility since the truck will connect to whatever it wants via cellular anyway...

Electrified Outdoors · Dec 23, 2023

godfodder0901 said:
I've been looking through my DNS sinkhole logs for the R1T. There are a few more entries than I thought that have been filtered. Specifically:

events.mapbox.com (obviously uses MapBox services, so makes sense)
device-metrics-us-2.amazon.com firebaselogging.googleapis.com sessions.bugsnag.com

Any of my other security-focused forum members seen any functionality impacted by blocking these destinations? And yes, I fully understand that this is an exercise in futility since the truck will connect to whatever it wants via cellular anyway...

Yes, fairly certain this is telemetry data. I have not tried blocking but I suspect at best it will make no difference as you pointed out and at worst cause issues with the UI or WiFi connection.

PBRAZ · Dec 23, 2023

godfodder0901 said:
I've been looking through my DNS sinkhole logs for the R1T. There are a few more entries than I thought that have been filtered. Specifically:

events.mapbox.com (obviously uses MapBox services, so makes sense)
device-metrics-us-2.amazon.com firebaselogging.googleapis.com sessions.bugsnag.com

Any of my other security-focused forum members seen any functionality impacted by blocking these destinations? And yes, I fully understand that this is an exercise in futility since the truck will connect to whatever it wants via cellular anyway...

Frustrating that they will ping the crappy Mapbox sdk and not Google maps, even though they are clearly pinging googleapis.com. Clearly not an anti-Google issue but perhaps a cost issue.

As for circumventing the connection...if you are connected via wifi and block certain destinations, I don't think it will attempt them via cellular. It will just error and go in it's merry way. You could also rewrite the DNS for those entries to something else, like yahoo.com. At least it will get a response, albeit an unexpected one.

RBM3 · Dec 23, 2023

The one that bothers me is Facebook. Why are they sending my data to Facebook?! I have to go back through the privacy setting to see if I can disable this. I was rather open with the data sharing on the truck thinking that it’s be used to improve the product.

I’m kind of annoyed that they are trying to monetize my data to a provider that has nothing to do with the functionality of the vehicle. I get Amazon and knew that going in, but there’s no reason to send data to Facebook other than $$

Rivian R1T R1S R1s are a Little Chatty... IMG_2625

godfodder0901 · Dec 23, 2023

RBM3 said:
The one that bothers me is Facebook. Why are they sending my data to Facebook?! I have to go back through the privacy setting to see if I can disable this. I was rather open with the data sharing on the truck thinking that it’s be used to improve the product.

I’m kind of annoyed that they are trying to monetize my data to a provider that has nothing to do with the functionality of the vehicle. I get Amazon and knew that going in, but there’s no reason to send data to Facebook other than $$

I wouldn't trust Unifi's traffic identification fully. I see a ton of traffic that seems to be misidentified. As far as Facebook, I've seen that report from Unifi as well, but haven't seen the corresponding DNS requests to substantiate that report yet.

SteveInBend · Dec 23, 2023

I wonder if the traffic might be related to this (from Wikipedia):

"Mapillary is a service for sharing crowdsourced geotagged photos, developed by remote company Mapillary AB, based in Malmö, Sweden. Mapillary was launched in 2013 and acquired by Meta Platforms in 2020. It offers street level imagery similar to Google Street View."

"In September 2018, Mapillary announced a "collaboration" with Amazon to use the Rekognition [10] visual data analysis platform to extract text from Mapillary's huge database of 350 million images. As large cities struggle to manage current street sign inventories, the first major project is identifying parking signs and extracting sign text for one large U.S. city, which will use the data to build a parking app to help save drivers time when searching for parking.[11][12] In October 2018, the company made CNBC's annual list of top 100 start-ups to watch.[13][14] In November 2018, Mapillary released a software development kit (SDK) allowing interested third-party software developers to integrate Mapillary image-capture functionality in their apps, opening the way for additional input channels.[15]"

COdogman · Dec 23, 2023

Rivian Data Privacy Policy

https://rivian.com/legal/privacy

HaveBlue · Dec 23, 2023

I'll bet firebase is for telemetry logging. That's a popular use.

R1s are a Little Chatty...

godfodder0901

Well-Known Member

Electrified Outdoors

Well-Known Member

PBRAZ

Well-Known Member

RBM3

Well-Known Member

godfodder0901

Well-Known Member

SteveInBend

Well-Known Member

COdogman

Well-Known Member

HaveBlue

Well-Known Member

Similar threads