Europa.eu domain name contacted through Signal Helper

I don't know, but if someone would paste a link to such domain in their signal client, would it be this helper which fetches it to render a preview?

&gt; I just found that we shared a link pointing to a governmental domain. I cleaned every log today and retrieved the link then sent it back. The domain has been contacted again. So yes it is related to link preview.<p>&gt; Thanks Stefan<p>From a 3 days old account.

Am I missing something or is this just a link preview? I don’t think there is any reason to spread fear or panic based on what is provided.

Perhaps IP 147.67.37.17 is used for shared hosting and the reverse DNS lookup from the Firewall software returned a misleading domain.

Not surprisingly, this turns out to have a totally benign explanation.<p>Still, I do think this demonstrates how hard it is for (apparently) well-meaning, somewhat-technical users to understand what their software does.<p>I don’t think reading over firewall logs is a very good way to ensure trust in client-side software, of course. (Aside from just being ridiculously time-consuming, there are too many easy ways to exfiltrate data. Like…sending it to the Signal servers?)<p>But I do sort of idly wonder, given the ever-increasing complexity of the trusted computing base, how we can make it so users who are (apparently) concerned enough to read over firewall logs can more productively evaluate trust.

If this was a spying attempt they&#x27;d surely set up a less suspicious domain instead of a subdomain<p>On a different note, does someone know what this firewall software is called?

ATTEMPT NO LANDING THERE.