Jump to content
Not connected, Your IP: 13.59.88.142
AirVPN
john.smith

ANSWERED DNS traffic can leak outside the VPN tunnel on Android

By john.smith, ... in Troubleshooting and Problems

Recommended Posts

Staff    9783

Staff
Posted ...
6 hours ago, john.smith said:

i would like to know if Eddie is affected or what should i do to avoid this issue. Thank you. 


Hello!

The problem is Android-related and not VPN client related. However, Eddie has an option which will prevent this leak, "VPN Lock". Please note that this option will not allow Eddie to re-connect and/or re-configure the tunnel, which is the exact reason for which leaks are prevented. When Google solves this Android problem you can then disable "VPN lock" and rely again on Android built-in leaks prevention. Please note that "VPN Lock" is disabled by default, so you must activate it from the "Settings" > "VPN" view.

We totally agree with Mullvad when they write, in the article you linked,"Depending on your threat model this might mean that you should avoid using Android altogether for anything sensitive". Remember also that an overwhelming amount of evidence suggests that iOS and Android were designed to be primarily profiling and surveillance devices, so it's an antimony to use such a device to enhance privacy or create a layer of anonymity.

Kind regards
 
john.smith reacted to this

Share this post

Link to post

trekkie.forever    6

trekkie.forever
Posted ...

If you are connected to a VPN and set the private DNS, the dns leak still occurs but the leak will be an encrypted DNS query which is still somewhat protected depending on your threat model. You can check this by setting cloudflare-dns.com as the private dns server and then performing the steps here. The cloudflare server will shift to a different country on disconnect and reconnect.

Sad that Android has such gaps and I also have issue with the VPN companies such as AirVPN, Mullvad and others have not been upfront about this and not done enough checks. Following the steps of the reddit poster was such an easy way to check for the leak.

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Go To Topic Listing
×
×
  • Create New...