SoylentNews is people
SoylentNews
from the oops-didn't-think-about-that-one dept.
Virtual Private Networks (VPNs) are legal and increasingly popular for individuals wanting to circumvent censorship, avoid mass surveillance or access geographically limited services like Netflix and BBC iPlayer. Used by around 20 per cent of European internet users they encrypt users' internet communications, making it more difficult for people to monitor their activities.
The study of fourteen popular VPN providers found that eleven of them leaked information about the user because of a vulnerability known as 'IPv6 leakage'. The leaked information ranged from the websites a user is accessing to the actual content of user communications, for example comments being posted on forums. Interactions with websites running HTTPS encryption, which includes financial transactions, were not leaked.
The leakage occurs because network operators are increasingly deploying a new version of the protocol used to run the Internet called IPv6. IPv6 replaces the previous IPv4, but many VPNs only protect user's IPv4 traffic. The researchers tested their ideas by choosing fourteen of the most famous VPN providers and connecting various devices to a WiFi access point which was designed to mimic the attacks hackers might use.
http://phys.org/news/2015-06-internet-anonymity-software-leaks-users.html
[More Info]: GWI Infographic: VPN Users
The paper 'A Glance through the VPN Looking Glass: IPv6 Leakage and DNS Hijacking in Commercial VPN clients' by V. Perta, M. Barbera, G. Tyson, H. Haddadi, A. Mei will be presented at the Privacy Enhancing Technologies Symposium on Tuesday 30 June 2015.
See also our story here.
Original Submission
(Score: 0) by Anonymous Coward on Tuesday June 30 2015, @11:14PM
Perhaps we just need standard method for blocking or null.routing IPv6 on Windows. Got Windows? Use a VPN? Run this script named blockIPv6.bat. Done.
Microsoft can do whatever they like but once the PC is in your hands you decide what it does for you. Love to see them try to knuckle users who disable IPv6. Revoke licence or support over disabling a system service? This is as bad as requiring a new OS licence when the motherboard and hard drive go at the same time.
Ask yourself why Windows 10 is free.
(Score: 2) by Runaway1956 on Tuesday June 30 2015, @11:35PM
"Love to see them try to knuckle users who disable IPv6."
Well - it would work for awhile. Most people who get cease and desist letters, or other threatening correspondence, look for the Easy Way Out® rather than addressing the issue. We see that from threatening letters from ISP's to TOS disputes, to copyright disputes, on and on.
MS could probably bully a few million people into compliance, before running into someone willing to make a meaningful fight of it.
(Score: 2) by kaszz on Tuesday June 30 2015, @11:37PM
Once the PC is in your hands it will regularly start to phone-home and there will be feedback to tell them you did bad things..
(Score: 1) by Nollij on Wednesday July 01 2015, @02:12AM
It's just the motherboard now. The key is held on the board itself, and the manufacturer is the only one who can do a "swap" of the keys.
The HDD failing makes life difficult, since you have to find replacement media. But it doesn't affect your license, either officially or unofficially.