It's just an NTP pool. The device is trying to update it's time. Likely it made many other requests to other servers when this one didn't work.

Maintaining up to date lists of anything is a game of whack a mole, so you're always going to get weird results.

If you're actually unsure, pcap the traffic on your pfsense box and see for yourself. NTP is an unencrypted protocol, so tshark or Wireshark will have no problem telling you all about it.

That said, I'd still agree with the other poster about local integration with home assistant and just block that sucker from the Internet.

Paperless-ngx! https://github.com/paperless-ngx/paperless-ngx

XMPP most definitely! Especially if you want to have connectivity to other servers at all (like simplex). It's much simpler, more well-known, battle hardened, and still supports E2EE and video calling very well.

I recommend prosody. I recently went through the process of setting up a server and have a draft blog on it half way finished if you want an account of the experience.

EDIT: Blog post is live at https://roguesecurity.dev/blog/xmpp

This is pedantic, but there are indeed capacitors there. They're all surface mount components, so they don't look like the caps that people typically talk about replacing, and they likely aren't what caused it to fail. Anything labeled on the board with a C## is likely a SMD capacitor.

The irony of using AI to make this image...

Humanity really is a lost cause

Sort of liminal space vibes

XMPP is the way! There are dozens of us!

https://roguesecurity.dev/blog/xmpp

Hey, much appreciated!

They misspelled "backdoors."

That's because they just terminate TLS at their end. Your DNS record is "poisoned" by the orange cloud and their infrastructure answers for you. They happen to have a trusted root CA so they just present one of their own certificates with a SAN that matches your domain and your browser trusts it. Bingo, TLS termination at CF servers. They have it in cleartext then and just re-encrypt it with your origin server if you enforce TLS, but at that point it's meaningless.

I love avocados, but can't say I've ever liquified them then drizzle on toast...

You joke, but I guarantee there's a market. Consider health insurance companies that see an opportunity to charge everyone more unless they can prove their good brushing habits via app data.

If you have any question on truth worthiness, you can flash stock openwrt on them. You just lose out on their proprietary webUI and pre installed plugins. I believe their firmware is public on GitHub though.

I thought this was gonna be some animorphs shenanigans from the thumbnail

That all sounds correct to me. The random port you're seeing in the logs is a high port, often referred to as an ephemeral port, and it is common for source ports. All good there.

Certainly! As others have said, don't hang anything worth value on it without an out of band backup strategy, they're famous for unscrupulously deleting things with no warning. Oracle is a miserable company.

Free is free though!

😆 God the judiciary is fucked up...

What's yours then?! Sounds like something a fed would say...

Also your mother's maiden name and the name of your elementary school.

Today I fell off a ledge into orbit.

Discord isn't free, you're paying with your data. 😅