Warning! Firefox and Chrome are giving away your ip address, even through a vpn

  • 4th Feb, 2015

It has been recently reported that the true ip address of a user can be determined via the WebRTCfunction in Firefox and Chrome, even when a vpn or another anonymizing technique is being used. WebRTC is a function that makes video calls within browser windows possible and is activated in Firefox and Chrome by default. Daniel Roesler of daylightpirates.org has reported this flaw and has demonstrated how to exploit it. Visitors of a website running his code will have their true ip address revealed by their browsers. So far, it seems that only Windows users are affected by the issue. At the moment, the only possibility to protect yourself is by either deactivating WebRTC in your browser settings or by using blocking AddOns. How to fix the issue:

In Firefox, visit the configuration at about:config and change the value for “media.peerconnection.enabled” to “false”. Alternatively, you can use the No-Script AddOn to block WebRTC.

Chrome users can install an extension called WebRTC Block.
Update: there is now a better extension that will prevent the leak without disabling WebRTC completely: WebRTC leak prevent. After the installation of the extension, WebRTC will be blocked and your browser will be safe again.

We hope, that this flaw will be fixed as soon as possible in order to make safe obfuscation of your true ip address possible again, without expert knowledge and extensions.

3/5 (4)

How did you like this post?