I updated my Distro 14 yesterday to all the latest modules and now our OpenDNS (Cisco Umbrella) is rejecting some traffic. Is this legitimate traffic that I should whitelist or do I need to investigate further.
Security Activity
Time Resp. Destination Category Identity
Yes those are legitimate servers. They are GPG/PGP public key servers used for opengpg which is used as part of module signing. It seems silly that would be flagged.
// List of well-known keyservers.
private $keyservers = array(
"pool.sks-keyservers.net", // This should almost always work
"hkp://keyserver.ubuntu.com:80", // This is in case port 11371 is blocked outbound
"pgp.mit.edu", // Other random keyservers
"keyserver.pgp.com", // Other random keyserver
"pool.sks-keyservers.net"
); // Yes. sks is there twice.