WebRTC - IP Security leak with VPN
Can someone please tell me that this security issue is being worked on? This is a serious problem. I don't know anything about programming but from what I have read, plugin developers are being forced to use WebRTC webextensions. But the issue is, WebRTC has a serious leak of exposing your IP when using VPN. Totally unacceptable and I can't believe Mozilla is ok with this. Us users need the ability to use both VPN and our plugins to defeat tracking and keep secured. Does any one have information about this high risk issue?
All Replies (4)
Hello ice_blue, unfortunately, mozilla will still support the underlying webrtc technology in the browser, even after Hello discontinued in Firefox 49.
please see : https://wiki.mozilla.org/Media/WebRTC/Privacy
from what i known, the vpn that is not affected by WebRTC, are : HotSpot Shield, IPVanish, CyberGhost, StrongVPN, ExpressVPN.
thank you
Thanks for your reply ideato. I bookmarked the link.
ideato said
from what i known, the vpn that is not affected by WebRTC, are : HotSpot Shield, IPVanish, CyberGhost, StrongVPN, ExpressVPN.
It looks like you're saying that the IP exposure is the fault of the VPN provider and not Firefox. Do you have a link to a resource site to confirm this?
Hello
ice_blue said
It looks like you're saying that the IP exposure is the fault of the VPN provider and not Firefox. Do you have a link to a resource site to confirm this?
No, the ip exposure is "fault" (not exactly the correct word) in firefox, edge, chrome and opera browsers that use technology like Firefox Hello (Web Real-Time Communication or WebRTC), this technology is not mature yet.
yes i have a link but it is in Greek language :-)
the above vpn providers use different technology than the others and because of that, does not affected by WebRTC.
see the screenshots
Υπέρ, means, Pros : Δεν επηρεάζεται από το WebRTC, means Does not affected by WebRTC
Κατά, means, Cons : Επηρεάζεται από το WebRTC, means, Affected by WebRTC
thanks again
It is probably better to keep this to the original thread. Thanks for cross linking them Ideato.
It is also worth noting you are not forced to use WebRTC you are able to disable it.
We do not have Developers and security experts here. If you consider there is an unadressed security issue then you would be better asking in the Mozilla security forum.
- Try this add-on Disable WebRTC 1.0.14
https://addons.mozilla.org/firefox/addon/happy-bonobo-disable-webrtc/- Or Toggle media.peerconnection.enabled to false in about:config.
- See also this test page whatismyipaddress.com/webrtc-test
- And explanation Is Your VPN Leaking Your IP Address? Better Find Out.