Little Snitch just caught a request by syslogd to accept an incoming connection from 17.253.21.53. Whois resolves the IP to Apple. Why is Apple trying to connect to my computer using syslogd?
MacBook Pro 15″, macOS 10.15
I just got an incoming connection to syslogd from 17.253.14.133 reported this morning.
To explain for the complainers: a firewall will allow incoming connections to the NAT-ed LAN, if there had been a prior outgoing connection. In ths case only, replies will be routed to the LAN-IP. In laymans terms, it means either syslogd or any other task had opened an outgoing connection to that internet-IP. As to why a local log daemon needs to communicate with the cloud is for Apple to answer.
If you care to run something like wireshark (or tcpdump) it would be plain visible how many connections are done to the apple cloud ervery second. It is not clear if all of these are actually needed, seems like every part has it's own (several!) cloud locations. And many of these (weather, stocks, news) cannot be turned off, and will happen even if you never ever open any of these. Yes, I did report that but I'm just one voice among millions.
satcomer wrote:
That's called iCloud syncing!
I don't back up my whole machine to iCloud. Just selected apps. Why would it synch my log files?
Steve314 wrote:
Why Apple wants to communicate with that escapes me hence my question.
You might have better luck over at Stack Exchange.
Why does syslogd want to accept an incoming connection?
