IPv6 privacy leak

Vår huvudtjänst.
Post Reply
miozmo
Posts: 2
Joined: Fri 7 July 2017, 23:30

IPv6 privacy leak

Post by miozmo »

Integrity VPN does not redirect any IPv6 traffic through the tunnel.

This makes it easy for remote nodes to determine your ISP and IPv6 address, defeating the whole purpose of using a VPN (if done for privacy/anonymity reasons at least).

This can be easily observed by visiting http://test-ipv6.com. It will say:
Your IPv4 address on the public Internet appears to be 192.0.2.1 (BAHNHOF http://www.bahnhof.net/, SE)
Your IPv6 address on the public Internet appears to be <YOUR ACTUAL IPV6 ADDRESS> (<NAME AND COUNTRY OF YOUR ACTUAL ISP>)
Confirmed to happen on both desktop and mobile.

Could this be fixed, please? (OpenVPN supports IPv6 just fine, for what it is worth.)
miozmo
Posts: 2
Joined: Fri 7 July 2017, 23:30

Re: IPv6 privacy leak

Post by miozmo »

*bump*

This issue remains unsolved. It impacts both desktop and mobile clients. As the attached screenshots demonstrate, it is laughably easy for a web site or some other service to divulge your real ISP and IPv6 address, and as a result your privacy is seriously compromised.

In order to fully protect the privacy of the user, a VPN provider must redirect both IPv4 and IPv6 Internet traffic through the VPN tunnel.

Both OpenVPN and Bahnhof do (to the best of my knowledge) support IPv6, so enabling this ought to be a relatively straightforward configuration job.
Attachments
Android screenshot
Android screenshot
Screenshot_20180103-171511-2.png (134.5 KiB) Viewed 6221 times
Desktop screenshot
Desktop screenshot
Screenshot_20180103_171559.png (95.88 KiB) Viewed 6221 times
Payerl
Posts: 44
Joined: Wed 8 February 2017, 07:16

Re: IPv6 privacy leak

Post by Payerl »

I agree with you that this is really bad that it is this way.. Myself I have blocked all IPv6 traffic in all directions in my router and this way protects myself but it is still crazy it's needed...
Post Reply