On 23/06/2019 16.05, Dave Howorth wrote:
I never got an answer from anybody in this thread about any software or other technique for detecting and/or thwarting IoT devices that try to phone home without asking permission.
If you are interested in that, you should ask a question about that, with an appropriate subject line ;-) I don't think it is possible, if they work hard at going out... At least not easy. You need an egress firewall, placed at the gateway to internet or at the WiFi Access Point. SuSEfirewall ain't that. It has to block outgoing connections coming from the IP of the IoT gadget in particular, and you have to know it, and fix it using DHCP. That's what I can think about, without reading the link below. Or, you can configure for them an special AP that has no connection to internet. No route. At worst, no cable.
Just for interest, here's an open-source project that enables exactly this kind of bad behaviour: https://www.dataplicity.com/ Held out as a good thing. o o ~
-- Cheers / Saludos, Carlos E. R. (from oS Leap 15.0 x86_64 (Minas Tirith))