WebRTC, WebExtensions and VPN Security
I was just notified from one of my plugins that Mozilla is changing FF format from XUL to WebExtensions. Does WebExtensions utilize WebRTC?
I’m asking because I travel a lot and use VPN on public networks. If WebExtensions does rely on WebRTC, then Mozilla, how are you going to address the security vulnerability of IP leakage in WebRTC? Currently, I have to keep it disabled.
All Replies (4)
WebRTC has been in Firefox and on by default for a long while.
- Here is an old article https://hacks.mozilla.org/2013/06/webrtc-comes-to-firefox/
- And an explanatory article https://developer.mozilla.org/docs/Web/API/WebRTC_API
WebRTC may be disabled
- Try this add-on Disable WebRTC 1.0.14
https://addons.mozilla.org/firefox/addon/happy-bonobo-disable-webrtc/ - Or Toggle media.peerconnection.enabled to false in about:config.
- See also this test page whatismyipaddress.com/webrtc-test
- And explanation Is Your VPN Leaking Your IP Address? Better Find Out.
- And explanation Is Your VPN Leaking Your IP Address? Better Find Out.
Web extensions are effectively based on Google Chrome's Blink. For further information please see these
- WebExtensions in Firefox 48 | Mozilla Add-ons blog
https://blog.mozilla.org/addons/2016/04/29/webextensions-in-firefox-48/ - Details https://developer.mozilla.org/Add-ons/WebExtensions
Thanks for your reply, but your links only tell about what WebExtensions are and didn't address my question.
"Mozilla, how are you going to address the security vulnerability of IP leakage in WebRTC?"
Hi ice_blue, there is some underlying plumbing in Firefox 48 to restrict the sharing of IP addresses, but there is not a user interface to manage the settings. The Mozilla Wiki documents some of them: Media/WebRTC/Privacy - MozillaWiki.