Privacytools.io: Suggestion: WebRTC

Created on 23 Jul 2017  ·  9Comments  ·  Source: privacytools/privacytools.io

Since the Website is also directed to users who lack in depth knowledge about the technical details I would suggest adding some more context to the WebRTC section. Otherwise those people following the guide might disable it and wonder why e.g. hangout, jitsi or similar isn't working.

Also followup question: The chrome section mentions that there only is a plugin that is easily circumvented. Is this only the case with this specific plugin or is the same problem present in other (firefox) plugins? So far I've been using https://github.com/ChrisAntaki/disable-webrtc-firefox for webRTC control.

👁️ browsers 🔎 research required
Source
picture Jasper-Ben

Most helpful comment

uBlock origin also has a setting that disables the IP leak created by WebRTC if that's what you're looking for

picture ghost on 28 Jul 2017
2

All 9 comments

Is this only the case with this specific plugin or is the same problem present in other (firefox) plugins?

IIRC (tested one year ago) uBlock has that same problem in Firefox.

C-O-M-P-A-R-T-M-E-N-T-A-L-I-Z-A-T-I-O-N picture C-O-M-P-A-R-T-M-E-N-T-A-L-I-Z-A-T-I-O-N on 23 Jul 2017

Can't WebRTC be disabled completely in about:config?

ghost picture ghost on 23 Jul 2017

@Shifterovich It can. But from time to time I want to use WebRTC (e.g. for my selfhosted jitsi instance) without going through the hassle of enabling it in the about:config. The plugin mentioned above gives the possibility to enable/disable it with one click. So I was wondering if this is a widespread problem affecting multiple plugins.

Jasper-Ben picture Jasper-Ben on 23 Jul 2017

Ah. Well, we should definitely do some research as the claim about the Chrome extension may not be true anymore.

ghost picture ghost on 23 Jul 2017
👍1

Firefox and its forks can block WebTRC into about:config or with addons.
Google Chrome has WebRTC built into the application.

You can test if Chrome is revealing your local and public IP addresses here.

Alternatives:

Ungoogled Chromium modifies Chromium to eliminate these APIs, see:
https://github.com/Eloston/ungoogled-chromium/issues/179

Unofficial Google Chromium builds with No Sync • No WebRTC • No Widevine

Atavic picture Atavic on 23 Jul 2017
👍1

uBlock origin also has a setting that disables the IP leak created by WebRTC if that's what you're looking for

ghost picture ghost on 28 Jul 2017
2

For "capital portal login checks" read "captive portal login checks"

Hillside502 picture Hillside502 on 3 Apr 2018

@thorin-oakenpants we also need to take note of this for the rewritten about:config section.

blacklight447-ptio picture blacklight447-ptio on 5 Sep 2019

I think this may still be relevant as I don't think the new about:config came yet, assigning @blacklight447-ptio and reopening just in case.

Mikaela picture Mikaela on 4 Dec 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

dm17 picture dm17  ·  87Comments
ghost picture ghost  ·  108Comments
MystesofEternity picture MystesofEternity  ·  66Comments
Thorin-Oakenpants picture Thorin-Oakenpants  ·  41Comments
jonaharagon picture jonaharagon  ·  36Comments