[GH-ISSUE #8497] Unauthorized Connection from python.exe #53813

Closed
opened 2026-05-05 15:23:19 -05:00 by GiteaMirror · 0 comments
Owner

Originally created by @Suedama86 on GitHub (Jan 12, 2025).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/8497

Bug Report

Installation Method

Installed via pip on Python 3.11.6 using pyenv-win.

Environment

Open-WebUI Version: 0.5.4
Ollama (if applicable): 0.5.5
Operating System: Windows 10 Pro
Browser (if applicable): Google Chrome Version 131.0.6778.265 (Official Build) (64-bit)

Confirmation:

  • I have read and followed all the instructions provided in the README.md.
  • I am on the latest version of both Open-WebUI and Ollama.
  • [N/A] I have included the browser console logs.
  • [N/A] I have included the Docker container logs.
  • I have provided the exact steps to reproduce the bug in the "Steps to Reproduce" section below.

Expected Behavior:

No unexpected or unauthorized external connections should be initiated by Open-WebUI when running locally.

Actual Behavior:

A connection to 143.204.237.40:443 (associated with server-143-204-237-40.cph50.r.cloudfront.net) was observed originating from python.exe without my authorization. The connection state was Close Wait.

Description

Bug Summary:

While running Open-WebUI, I detected an unexpected connection initiated by python.exe. This connection was made to a remote address (143.204.237.40:443) and raised security concerns as it was not authorized by me or documented in Open-WebUI’s usage.

Connection details:

Process Name: python.exe
Process ID: 24884
Protocol: TCP
Local Port: 63707
Local Address: 192.168.1.71:63707
Remote Port: 443
Remote Address: 143.204.237.40:443
Remote Host Name: server-143-204-237-40.cph50.r.cloudfront.net
State: Close Wait
Process Path: C:\Users\jo\pyenv\pyenv-win\versions\3.11.6\python.exe

Reproduction Details

Steps to Reproduce:

Install Open-WebUI v0.5.4 using pip.
Start Open-WebUI locally.
Use tools like Resource Monitor or netstat to observe active connections.
Note the unauthorized connection to 143.204.237.40:443.

Logs and Screenshots

Browser Console Logs:
Not applicable

Docker Container Logs:
Not applicable

Screenshots/Screen Recordings (if applicable):
Not available at the moment but can provide if necessary.

Additional Information

This connection raises concerns about undocumented external communications initiated by Open-WebUI. Clarification is needed to ensure this is either a required functionality or to address any security implications.

Note

If additional logs or testing are required, I am happy to provide them. Thank you for addressing this issue promptly!

Originally created by @Suedama86 on GitHub (Jan 12, 2025). Original GitHub issue: https://github.com/open-webui/open-webui/issues/8497 # Bug Report ## Installation Method Installed via pip on Python 3.11.6 using pyenv-win. ## Environment Open-WebUI Version: 0.5.4 Ollama (if applicable): 0.5.5 Operating System: Windows 10 Pro Browser (if applicable): Google Chrome Version 131.0.6778.265 (Official Build) (64-bit) **Confirmation:** - [X] I have read and followed all the instructions provided in the README.md. - [X] I am on the latest version of both Open-WebUI and Ollama. - [N/A] I have included the browser console logs. - [N/A] I have included the Docker container logs. - [X] I have provided the exact steps to reproduce the bug in the "Steps to Reproduce" section below. ## Expected Behavior: No unexpected or unauthorized external connections should be initiated by Open-WebUI when running locally. ## Actual Behavior: A connection to **143.204.237.40:443** (associated with **server-143-204-237-40.cph50.r.cloudfront.net**) was observed originating from python.exe without my authorization. The connection state was Close Wait. ## Description **Bug Summary:** While running Open-WebUI, I detected an unexpected connection initiated by python.exe. This connection was made to a remote address (143.204.237.40:443) and raised security concerns as it was not authorized by me or documented in Open-WebUI’s usage. Connection details: Process Name: python.exe Process ID: 24884 Protocol: TCP Local Port: 63707 Local Address: 192.168.1.71:63707 Remote Port: **443** Remote Address: **143.204.237.40:443** Remote Host Name: **server-143-204-237-40.cph50.r.cloudfront.net** State: Close Wait Process Path: C:\Users\jo\pyenv\pyenv-win\versions\3.11.6\python.exe ## Reproduction Details **Steps to Reproduce:** Install Open-WebUI v0.5.4 using pip. Start Open-WebUI locally. Use tools like Resource Monitor or netstat to observe active connections. Note the unauthorized connection to 143.204.237.40:443. ## Logs and Screenshots **Browser Console Logs:** Not applicable **Docker Container Logs:** Not applicable **Screenshots/Screen Recordings (if applicable):** Not available at the moment but can provide if necessary. ## Additional Information This connection raises concerns about undocumented external communications initiated by Open-WebUI. Clarification is needed to ensure this is either a required functionality or to address any security implications. ## Note If additional logs or testing are required, I am happy to provide them. Thank you for addressing this issue promptly!
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#53813