This menu lets you enable/disable collection of certain anonymous installation data for the TomatoAnon project.

The project collects and reports on Tomato installations worldwide. If enabled, FreshTomato runs a script to collect these data.

The following anonymized data are submitted to the database:

1. Country name
2. Hardware model
3. Tomato version (release)
4. Build type (or “edition” in FreshTomato terms)
5. Wireless driver version
6. Uptime
7. Tomato Mod (fork)
8. The date/time data were collected

This menu also contains a setting to enable/disable FreshTomato's Update Notification System.

For details about the data collected, and the privacy/anonymity of the data, see the “Security/Privacy Details” section on this page.

This section explains which data are collected, and how they are anonymized before being sent to the project.

It also includes a link to the project's' webpage, to let you browse the project data.

This section includes a setting to let you make an informed choice about enabling/disabling the TomatoAnon script. It also includes a link to the TomatoAnon website for your router model, so you could browse the project data relating to it.

Do you know what TomatoAnon does? :

• No I don't. (I) Have to read all information before I make a choice.
  Acknowledges you need information before making a choice.
  Selecting this greys out Do you want to enable TomatoAnon options.
  
• Yes I do, and I want to make a choice - acknowledges you
  understand what TomatoAnon does and are ready to choose.
  This enables the TomatoAnon enable menu.

TomatoAnon enable:

• Yes - enables TomatoAnon.
• No - disables TomatoAnon.

Being able to to view and sort TomatoAnon data lets you see which firmware runs well on which hardware, which hardware is popular and more. This can help you choose an appropriate hardware build.

Anyone at all can view data in the TomatoAnon database at its webpage: TomatoAnon. The webpage uses http protocol, so you'll be prompted with a security warning. Click through to allow the page to display.

Once there, you can view Tomato installations/users displayed by country, in pie chart and map form:

The charts and map are interactive. Clicking on various functions will display/sort data differently.

For example, clicking on the Show more link will display data in table form:

You can also view the most commonly used router models and most popular mods (forks):

The charts and map are interactive. Clicking on various functions will display/sort data differently.

You can view the most popular Tomato versions, and the most popular build types:

The charts are interactive. Clicking on various functions will display/sort data differently.

1. Enabled *
2. Disabled

By default, this feature is enabled if TomatoAnon enable is set to “yes”. However, you can can also uncheck it while “Yes” is selected.

When enabled, FreshTomato will check online for appropriate firmware updates for your model. If disabled, FreshTomato will not check for updates.

If either of these options is selected:

1. Do you know what TomatoAnon does? is set to: “No”.
2. TomatoAnon enable is set to: “No”.

then the checkbox will be greyed out. In both cases, Tomato will not check online for firmware updates.

The Update Notification System only alerts you to updates. It does not perform any updates. You must do that manually.

TomatoAnon provides valuable data to help developers troubleshoot, baseline, and identify issues. It was designed with security in mind. You can review its cleartext ASCII shebang script, found in: /usr/sbin/tomatoanon.

It is clear from the commands used that absolutely no personal or sensitive information is collected.

Here is a sample of that script:

root@freshtomato:/root# cat /usr/sbin/tomatoanon | grep "nvram get"
ANON_ENABLED=$(nvram get tomatoanon_enable)
ANON_ANSWER=$(nvram get tomatoanon_answer)
ANON_NOTIFY=$(nvram get tomatoanon_notify)
                IS_USB=$(nvram get os_version | grep USB | wc -l)
                        VER=$(nvram get os_version | awk '{ print $1" "$(NF-1) }')
                        VER=$(nvram get os_version | awk '{ print $1" "$(NF-2)" "$(NF-1) }')
                BUILDTYPE=$(nvram get os_version | awk '{ print $NF }')
                        WANMAC=$(nvram get wan_hwaddr)
                        LANMAC=$(nvram get lan_hwaddr)
                        MODEL=$(nvram get t_model_name)
                        ROUTERID=$(nvram get tomatoanon_id)

The only “external” reference is the WAN MAC address used to form the user's unique TomatoAnon ID. MAC addresses are only significant on the local LAN.

The only other data collected are found in the columns on the TomatoAnon reporting webpage. This includes things like Wireless driver version, Uptime, and so on. It's not possible for anyone to identify, trace or access the endpoint devices using these data.