Attend XDA's Second Annual Developer Conference, XDA:DevCon 2014!
5,785,512 Members 42,527 Now Online
XDA Developers Android and Mobile Development Forum

Android kernel

Tip us?
 
shadowcore
Old
(Last edited by shadowcore; 12th April 2014 at 05:07 PM.)
#1  
shadowcore's Avatar
Senior Member - OP
Thanks Meter 42
Posts: 404
Join Date: Apr 2013
Default Android kernel

Could someone tell me why the hell the Android kernel or shell need to communicate with the internet? I have installed a firewall in my phone and I waas disturbed to find out that for some reason, android shell and kernel have access to internet.

FYI, I use the firewall to prevent suspicious applications from communicating with the internet, and keep them isolated.
Of course, I have denied access to the kernel and shell, and everything seems to be working fine.

I currently run android 4.2.2 cyanogenmod 10.3 on a LG optimus 4x.
 
jcase
Old
#2  
jcase's Avatar
Forum Moderator / Senior Recognized Developer - Taco Vendor
Thanks Meter 7,209
Posts: 3,627
Join Date: Feb 2010
Location: Sequim WA

 
DONATE TO ME
Quote:
Originally Posted by shadowcore View Post
Could someone tell me why the hell the Android kernel or shell need to communicate with the internet? I have installed a firewall in my phone and I waas disturbed to find out that for some reason, android shell and kernel have access to internet.

FYI, I use the firewall to prevent suspicious applications from communicating with the internet, and keep them isolated.
Of course, I have denied access to the kernel and shell, and everything seems to be working fine.

I currently run android 4.2.2 cyanogenmod 10.3 on a LG optimus 4x.
Kernel has internet access, well because you want your device to internet access. The kernel pretty much has access to everything (outside of things lower than it. Kernel is the heart of the OS.

Shell user itself doesn't automatically have internet access, however when using adb shell one of the permissions granted to it is the internet permission (see /etc/permissions/platform.xml or on newer devices Shell.apk/AndroidManifest.xml). This is needed for debugging purposes mainly.
I'm taking a break of an undetermined length. Please don't contact me about exploits

Something important? jcase@cunninglogic.com
Like Android security topics? Join our G+ community -> https://plus.google.com/communities/...07618051049043
My Bitcoin address : 1Newifz6yETTmbziCsZZstmHHPH6ejNr75
The Following 2 Users Say Thank You to jcase For This Useful Post: [ Click to Expand ]
 
LinoX
Old
(Last edited by LinoX; 24th June 2014 at 01:18 PM.) Reason: added reverse lookup
#3  
Senior Member
Thanks Meter 82
Posts: 337
Join Date: May 2005
Location: Roma
Quote:
Originally Posted by jcase View Post
Kernel has internet access, well because you want your device to internet access. The kernel pretty much has access to everything (outside of things lower than it. Kernel is the heart of the OS.

Shell user itself doesn't automatically have internet access, however when using adb shell one of the permissions granted to it is the internet permission (see /etc/permissions/platform.xml or on newer devices Shell.apk/AndroidManifest.xml). This is needed for debugging purposes mainly.
Kernel's access to internet is used, for example, while playing youtube videos. Don't know why, though. If you block kernel access you won't be able to play videos.

I can suppose youtube has to use some kernel functions (maybe the ping?) to decide what's the fastest server to download data from.
I did a reverse lookup on blocked ip address and found:
PTR 173.194.70.95 fa-in-f95.1e100.net 24 hrsPTR 74.125.232.144 mil02s05-in-f16.1e100.net 24 hrs
1e100.net is registered to google. maybe they are the streaming servers.
If I helped you please hit
(...or buy me a beer )

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes