Beware of WebRTC bug which leaks your IP with VPN providors.

[yorgi]

There is a WebRTC bug that when using a VPN one can see your real IP Address.
Mos VPN providers have not fixed this bug and you can be vulnerable.
Please visit this site while you are connected to your VPN to make sure your VPN provider has fixed this issue.
https://ip.voidsec.com

At the moment the only browsers that have WebRTC disabled are Tor, MS edge and internet explorer.
You can disable WebRTC from Firefox but who knows what new apps will be using WebRTC so make sure that you go to that website and see if your IP leaks.
If it does change VPN service provider.
PIA is fine

Here is more on this subject
https://www.bleepingcomputer.com/ne...ers-leak-customers-ip-address-via-webrtc-bug/

 

[daviworld]

There is a WebRTC bug that when using a VPN one can see your real IP Address.
Mos VPN providers have not fixed this bug and you can be vulnerable.
Please visit this site while you are connected to your VPN to make sure your VPN provider has fixed this issue.
https://ip.voidsec.com

At the moment the only browsers that have WebRTC disabled are Tor, MS edge and internet explorer.
You can disable WebRTC from Firefox but who knows what new apps will be using WebRTC so make sure that you go to that website and see if your IP leaks.
If it does change VPN service provider.
PIA is fine

Here is more on this subject
https://www.bleepingcomputer.com/ne...ers-leak-customers-ip-address-via-webrtc-bug/

Disabled WebRTC in Firefox & Chrome age's ago, in relation to this, 26 out of 115 VPN provider's keep log's on you according to a recent security related news report

Sent from my LG-H830 using Tapatalk

 

[st3v3n]

Yorgi, Another test at Doileak.com also is useful; it has a optional torrent test. Many if not all ISPs log whether one uses OpenVPN, and though they may/may not be able to see or decrypt whatever is contained in the data-stream, they know where/who the VPNs are what company the connection belongs to. As long as you trust your VPN provider to honor their commitments re your service, that's what counts. If you ever suspect the provider us untruthful, ask them what they're doing (or not doing) if you suspect your IP is leaking. If they don't answer or you don't trust them, then find and switch to a different VPN, after checking them out thoroughly. The only IP that should ever show up when you test is the server IP address used by the VPN's servers not yours. It's the first test we run whenever a browser is started. Old news but hope it helps, Cheers.

 

[System Error Message]

an incorrect VPN network config can also leak you as well. Just having my mikrotik on one of the VPNs thats supposed to be approved by some privacy org i can see many other network users. Many VPN providers may not provide appropriate security on their own internal networks too.

So other than any software that runs on a VPN, you also need to worry about the VPN itself too.

 

[st3v3n]

System Error Message; very true, we went down that path once by accident while scanning our own network after reconfiguration. Depending on how well the VPN's system is protected against their paying customers on the inside much less the outside attacks, if one runs a scan into the VPN's system from your IP regardless of the claim they don't log anything, you're liable to be cut off if they register the scan, unless they're completely incompetent. Some of them are lax or don't have sufficient safeguards on their networks.

That scan went into some VPN IPs that were in the process of being being reassigned to new equipment/servers. I sent a copy of what registered on the scan before it was shut down and they were satisfied I wasn't an evil-doer. The same sort of activity in most ISPs will get you a stiff warning, if not unwanted attention.

Most of the VPNs boast of their firewalls, but won't give you specifics; if you ask and they won't give details, time to move to a different VPN, but these days, it's not worth scanning their networks or other users on one's VPN.