Warning. All VPNs are compromised. Luckily a simple solution..

This link will tell you if your vpn is compromised
[link to diafygi.github.io (secure)]

firefox solution: use noscript or goto about:config

set the “media.peerconnection.enabled” setting to false.

Thank you for the info. Fixed the leak.

I went to the link and it showed my real ip.

Then I did the about:config thing and found that the setting was already set to "false."

So I toggled it to "true" then back to "false" and tried again and that time it passed the test.

Weird that it was set to "false" to begin with, but was still sending out my real IP ...

Yeah thas

[link to chrome.google.com (secure)]

To fix it in Chrome.

bump.

It didn't work in my firefox

Done. Thanks for that!

If you have IE or FF 21 and below then no problem.

Noscript wont fix this. YOu have to disable WEBRTC


another checking link
[link to www.browserleaks.com (secure)]

anybody know where I can get some descent torrents from all I seem to be getting lately is viruses and spam

How?

WebRTC depends on javascript, so yes, No-Script fixes it.

Open a new tab in Firefox.

Enter "about:config" in the URL and press Enter (ignore the warning).

Scroll down to where it says “media.peerconnection.enabled” and right-click on that.

If it is set to "True" then click on "Toggle" in the drop-down menu. This should set it to "False."

cloaked!

What about other local host information. If java script can query the localhost for the IP on the local adapter, can it not query for hostname ? MAC address ?

Even after this fix, i was shocked that the back-end server can locate your timezone if you have not disabled javascript.

eg goto www.formula.com and see the local time. Even if you are using VPN it would still show your timezone. I contacted customer care and they told me this...

You have to disable javascript by addon like noscript. also disable hmtl5.

[link to thehackernews.com]

disable link
[link to www.trishtech.com]



also type geo.enabled in the about:config window and disable it.
[link to www.mozilla.org (secure)]

sorry i meant [link to www.formula1.com]

to spoof mac address download smac 2.0

[link to www.klcconsulting.net]


Best option would be to get a DD-WRT vpn router like netgear r6300, asus rtn16 etc

If I have enabled geolocation so that I can play online casino in NJ--will changing the settings mess that up?

how the fuck is a tunnel on transit level, going to stop userland applications from doing stupid shit?

vpn's aren't compromised. people's brains are.

geo location is enabled by default. Sites like google bypass geo.enabled (set to false) by relying on yoour ip address. To fool google, you have to spoof your ip address using tor or vpn.

You can also set fiefox setting to forbid websites not to track you via do not track option
[link to www.mozilla.org (secure)]

But nowadays websites use beacons, flash cookies and to dtop that you need addons like ghostery, adblock, better privacy etc.

[link to oldpiratebay.org (secure)]

Really appreciate threads like this. It can be hard to stay one step ahead of the game when we all have a million other things to worrying about.

Much appreciated.

Now cloaked. Totally exposed before.

fuckin hell.

did the browser thing and the noscript add on.
one of the best threads ever on GLP.

OP has done a tremendous service. But then I obviously don't know shit about this stuff.

Otherwise intelligent people helpless against this shit if they aren't conversive.