Page 1 of 4 123 ... LastLast
Results 1 to 10 of 31

Thread: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

  1. #1
    Join Date
    Jun 2012
    Beans
    1

    Lightbulb Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    Background
    Release after release, Canonical's Ubuntu is increasingly turning YOUR personal computer into a personal surveillance machine enabling ad companies, intelligence and law enforcement agencies, curious spouses and the occasional Google wifi war driver to harvest personal information on YOU. Aside from that, these processes also waste processing power, memory and internet bandwhich. A couple of weeks ago, a colleague installed Ubuntu for the first time complaining to me how slow it was running on his older computer. The reason offcourse were processes like Zeitgeist and Geoclue.
    Below some guidelines on how to remove some of these programs and still maintaining some basic OS functionality.

    Commands
    The commands below remove:
    Zeitgeist: Zeitgeist is a service which logs the user's activities and events (files opened, websites visited, conversations hold with other people, etc.) and makes the information available to other applications.
    Geoclue: GeoClue is a software framework that enables geospatial awareness in applications. In human language: physical location tracking software.
    Whoopsie-daisy: Daemon that submits (sensitive?) crash data to the Ubuntu server.

    Code:
    sudo apt-get remove zeitgeist zeitgeist-core zeitgeist-datahub python-zeitgeist rhythmbox-plugin-zeitgeist geoclue geoclue-ubuntu-geoip geoip-database whoopsie
    GeoClue
    Because geoclue has been intertwined with indicator-datetime, you won't be able to see the time in Ubuntu anymore. To overcome this, you can download the original sources (https://launchpad.net/indicator-date...-0.3.94.tar.gz) of indicator-datetime, replace "src/datetime-service.c", "configure.ac" and "configure.ac" by the ones located in the archive here: http://www13.zippyshare.com/v/18551510/file.html. Then offcourse, recompile it and install it. All references to GeoClue have been removed. For the lazy people, a deb "executable" is also included. Installing deb files downloaded from the internet is a very bad practice as they can contain rootkits!

    The SHA1 checksum of indicator-datetime_0.3.94.0.1.zip is "42962afcfd56ec8277ae007c90f740f6b99388c0"
    To compare the checksum:
    Code:
    sha1sum indicator-datetime_0.3.94.0.1.zip
    Zeitgeist
    Removing Zeitgeist will cause Unity to malfunction. As I've never been a fan of Unity I didn't care. Installing Gnome3 goes as follows:
    Code:
    sudo add-apt-repository ppa:gnome3-team/gnome3
    sudo apt-get update
    sudo apt-get install gnome-shell gnome-tweak-tool
    sudo reboot
    NTPD
    To disable NTP call home requests on every Ubuntu boot, the following can be performed
    Code:
    sudo gedit /etc/default/ntpdate
    On the first line, insert a new line containing:
    Code:
    exit 0
    Note that your system time won't be updated automatically anymore from now on so you'll have to do this manually.

    Result
    After all the above has been performed, only the occasional connection to the following server domains will occur, mainly for keeping your Ubuntu version secure and up to date:
    • extras.ubuntu.com
    • ppa.launchpad.net
    • changelog.ubuntu.com
    • security.ubuntu.com
    • ubuntu.mirrors server
    • archive.ubuntu.com


    The following domains won't be contacted anymore
    • ntp.ubuntu.com (only once at boot time)
    • daisy.ubuntu.com (sporadically called during user session)
    • geoip.ubuntu.com (sporadically called during user session)
    • videasearch.ubuntu.com (Sporadically called during user session, don't know why it's even used let alone by which process. If someone can enlighten me, I'd be happy to learn.)
    Last edited by besouro; June 9th, 2012 at 08:59 AM.

  2. #2
    Join Date
    Jan 2011
    Location
    Mumbai
    Beans
    4
    Distro
    Ubuntu 10.10 Maverick Meerkat

    Smile Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    That was really Helpful , thanks for In-depth Info on disabling them.

  3. #3
    dino99's Avatar
    dino99 is offline Ubuntu addict and loving it
    Join Date
    Jun 2006
    Location
    Nux Jam
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    no needs to fail into paranoia, removing zeitzeist is enough, and whoopsie is really for the best

  4. #4
    Join Date
    Nov 2006
    Beans
    23

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    For Whoopsie, you can set the /etc/default/whoopsie configuration file to 'false'

  5. #5
    Join Date
    Apr 2005
    Beans
    10

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    On the subject of ntp here for those who are truly concerned about this but would still like to actually have their time updated there are plenty of public NTP servers around you could install the NTP package and use those, or there is always the ntp pool if you don't feel like selecting servers independently yourself http://www.pool.ntp.org/

    The latter are all volunteer servers which donate their services to the pool which has some several million users, I actually run two pool servers myself and it is not unusual to see 100,000 active clients on each of those on their own.

    Here is a basic NTP config file which will suffice for using the pool those you might want to change the addresses to your local country zone, there is more information on the pool website

    Code:
    # --- GENERAL CONFIGURATION ---
    server pool.ntp.org
    server 1.pool.ntp.org
    server 2.pool.ntp.org
    server 3.pool.ntp.org
    
    # Drift file.
    
    driftfile /etc/ntp/drift
    If you want to restrict access to your NTP server then you will want to add some restrict statements, I'll include a few examples but you should change the addresses to match your own setup. Note: If you are behind NAT then this is not necessary unless you are running on a machine configured as DMZ or with port 123 UDP forwarded to it.

    Code:
    # If you only have the one computer and NTP is running on the same machine then you can just have a default ignore statement.
    
    restrict default igonre
    Code:
    # If you have several machines on a LAN then I'd suggest the following:
    
    restrict default ignore
    
    # Permit hosts on network 192.168.0.0 with netmask 255.255.255.0 change these if your network is different.
    restrict 192.168.0.0 mask 255.255.255.0 nomodify
    Then just change the pool server addresses in the configuration files of your other machines to server <your main server ip>

    IPv6 address ranges can be permitted the same way, if anyone has any issues I am on the pool mailing list as are a bunch of other helpful people.

    Hope that helps.

  6. #6
    Join Date
    Jan 2011
    Location
    UK
    Beans
    55
    Distro
    Ubuntu

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    Yes, a little on the paranoid side, OP, but i really appreciate the post because i was getting sick of geoclue-ubuntu-geoip showing up and pinging out all the time, when i've always set the time settings to manual.

    As far as i'm concerned, trimming the excess is a good thing towards efficiency.

    I was just perusing the code on launchpad for mentionings of 'geo' in indicator-datetime (geoclue seriously needs to stop being a dependency already - i did read somewhere that it was going to be dropped for quantal?) So your files are a big time saver

    As far as privacy goes - zeitgeist isn't evil. Have a quick look at the omgubuntu article for some good points: http://www.omgubuntu.co.uk/2012/08/i...-spying-on-you

    Nothing wrong with your suggestions at all, OP, i hope these tweaks do eventually become simply checkboxes or something, so the user has full say in what is going on behind the scenes - it's a vital part of the linux ethos to have the OS exactly as you want it.

    Thanks
    Disco ut intelligam. I learn, so that i may understand.

    Please direct translation related work messages and queries over to my page on launchpad. https://launchpad.net/~untaintableangel
    ...and happy typing!

  7. #7
    Join Date
    May 2008
    Location
    USA New York
    Beans
    1,161
    Distro
    Ubuntu 14.04 Trusty Tahr

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    Interesting thread, I was also interested in disabling some things after noting in 12.04 how easy it is for all your recent activities to be seen!
    All recent activity is easily seen by default, merely by clicking on Dash Home on top left launchpad!

    However by going into 'privacy' you are taken to 'Zeitgeist Activity Log Manager' which gives you the option to delete all sorts of recent things, files, apps, history and even allows you shut off recording all log activity.


    The question in does disabling and turning off the 'Record Activity' really do this, or is it still being secretly logged somewhere else hidden deeper inside Ubuntu?
    Ubuntu 14.04 64bit Ext4 on a Dell Studio XPS Desktop Intel® Core™ i7-860 2.8GHz, 8GB DDR3 ram and Dual booting: Ubuntu 14.04 64bit Ext4 & 32bit Vista Home Premium, on a Toshiba laptop dual core AMD Turion 64, 2.0 GHz, 4GB ram.

  8. #8
    Join Date
    Nov 2009
    Beans
    11

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    Thanks to the OP for the time indicator deb.
    Works fine in Unity 2D, ftr.
    And Unity 2D works well enough without Zeitgeist. Gnome-do does plenty good enough indexing of a plain desktop workflow, and it runs fine under Unity 2D.

    For those who infer paranoia from the desire to keep services pared down - - it's not paranoia for me, but a fear of having to battle my way through a list of opaque processes when I may have no choice but to understand them - when for example troubleshooting something misbehaving..... memories of grinding through the set of default services running in Win machines are still not remote enough!

  9. #9
    Join Date
    Aug 2012
    Location
    UK
    Beans
    145
    Distro
    Lubuntu

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    good stuff, I'd already got rid of geo and zeit but it's nice to have confirmation, think I'm going to leave whoopsie for now, can't be a bad thing to report programs and devices that are sucky. Not bothered about unity either, it's too laggy.
    when on thin ice; dance

  10. #10
    Join Date
    Sep 2006
    Beans
    143

    Re: Disabling privacy-invasive Zeitgeist, Geoclue, Whoopsie (and NTPD)

    Besouro, Thank You so much for posting.

    Without some post on security implications of latest codesets, only the techie gets to have any clue about the subject. As one of the 'lazy', I'm nervous about disabling a window mgr w/out more study. If you run across more on the topic(s), I hope you will continue to post.

Page 1 of 4 123 ... LastLast

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •