One thing this did encourage me to do is find out exactly what $VENDOR can fetch off the server. If it can't talk to their infrastructure it nags about it, but I now want to know what they're collecting that led them to even make a determination what's happening on the file system of an internal server.