After a clear set up and going by system startup with out utilizing iCloud’s providers, I discover that the method apsd
makes a persistent reference to an IP handle of the 17/8 vary. There are at all times three connections: one at port 443, port 5223, and different ports for mail, and many others. These hosts are both Apple engineering or Apple information facilities, the place many have reported abuse. I’m within the means of characterizing my units resulting from malware, so I have to distinguish between typical and non-typical habits.
APSD is used for APN or Apple Push Notifications, so it’s used for lots of the manufacturing unit apps. However it is usually used for managing units corresponding to an MDM service. The community visitors at instances could be as excessive as 10 MB Despatched and a couple of MB Acquired on a typical day. I’ve had consultants look over my logs, and so they have suspicion that I’ve been enrolled in mdm with out my consent. It’s working by configured profiles with Apple’s legacy managed system generally known as MCX.
I’m in search of recommendation and verification of the speculation that this communication could also be indicative of my units being managed.
MODERATORS: Please repost my second query titled “Put in Plugin by Apple Regular”. It has been closed by a moderator as being a “duplicate”. The primary query I posed wad deleted since you claimed that it had too many questions inherent to it. So I took one query out and reposted. It’s important that I get that one answered. Thanks.