Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> Apple provides all developers with access to its Network.framework, Multipath TCP (MPTCP), and other networking APIs, which by design allow any app developer to bypass the Wi-Fi interface and route traffic directly over the cellular interface. Invoking these tools effectively allows any app developer to unmask VPN users on Wi-Fi without notice or consent. By routing device traffic over the cellular interface, app developers are able to bypass VPN protection and obtain the user's cellular IP and other device information that allows that app developer to fingerprint a particular device and/or user.

https://blog.disconnect.me/ios-vpn-leak-advisory/



VPNs on iOS are useless, just like almost any advanced usage of any of apples devices.


*VPNs for IP masking.

I guess that ship has sailed....


> *VPNs for IP masking.

ah yes, a great counterpoint because users so often don't use a different IP address under their VPN.


Leaking IP addresses is only a security issue for kinds of VPN that are meant to hide these.

For corporate VPNs, virtual private networks or just datacenter routings its no problem since they are for other purposes than masking your IP.


Is it possible to restrict cellular usage by app by any chance?


Yup, in iOS go to Settings -> Cellular. There's a toggle for each app.


Thank you.


yes, Settings > Cellular, move the slider to the left to disable cellular for the app




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: