This is new to one of the later versions - suddenly Mattermost desktop is calling api.segment.io - which is typically used for tracking data in 3rd party services.
Why is this client tracking anything? Feels less secure with this going on. Please advise.
Thanks @fmp777
You can find out more information here: https://docs.mattermost.com/administration/telemetry.html
It is optional and can be turned off on the server if preferred. No personally identifiable information is collected.
I'll close the issue since it's related to the Mattermost server rather than the desktop app. Feel free to ask further question though.
@jasonblais : It is optional and can be turned off on the server if preferred. No personally identifiable information is collected.
I think that kind of optional option should be set to disabled by default. In other words, it should be an opt-in option instead of an opt-out one.
I think it is a big security issue to use a host, which changes every 60 seconds its IPs in an unpredictable manner. So since reports are blocked by our firewall anyway (impossible to find a static stable IP), we are forced to disable telemetry ...
Hi,
I didn't want to duplicate this issue.
So I'm going to continue on this one until advised otherwise.
The pi-hole mattermost server is configured to not have telemetry activated. Their team have shown me the screenshot of the box checked to false in the settings.
Still I have plenty of api.segment.io calls on my dns filtering system which is pi-hole or latter nextdns.
Here are the screenshots that I4ve taken when I had a problem before unblocking your telemetry partners.




@boistordu FYI, I had to reload (View->Reload) my front end app (Linux v4.3.1, in my case) after disabling reporting in the System Console. Errors went away after that.
Currently the cert is bad:
$ curl https://api.segment.io/
curl: (60) SSL certificate problem: EE certificate key too weak
More details here: https://curl.haxx.se/docs/sslcerts.html
Most helpful comment
I think that kind of optional option should be set to disabled by default. In other words, it should be an opt-in option instead of an opt-out one.