AirVPN vulnerable to IPv6 leakage and DNS hijacking?

[germ 0]

Hello,

      I just stumbled across this very interesting paper comparing VPN vulnerabilities of commercial VPN services:

 

http://www.eecs.qmul.ac.uk/~hamed/papers/PETS2015VPN.pdf

 

It is a very interesting read. Relying on tests performed between Sep and Dec 2014, the researchers found that all 14 commercial VPN providers examined are vulnerable to either IPv6 leakage or DNS hijacking, therefore failing to provide the privacy they advertise. 

 

I apologize if this has been discussed before, but I am concerned that those vulnerabilities could give away my IP address even if I use AirVPN. So my questions to the AirVPN provider:

- are you aware of these issues?

- what is your plan to close the vulnerabilities?

- is there a way for us, the end user, to verify whether we are subject to those issues?

 

As a countermeasure to IPv6 leaks, I have disabled IPv6 on my OS X and Linux clients (iOS is not affected). I am not sure how to counteract the DNS hijacking. 

 

I hope we can have an open discussion on this forum and thanks for any suggestions. 

[Staff 10118]

Hello,

 

it was not a problem even at the time of paper publication.

 

Please see https://airvpn.org/topic/14231-ipv6-leakage-and-dns-hijacking

 

Topic locked.

 

Kind regards