MoDaCo is undergoing planned maintenance. Site functionality may be reduced - follow @modaco or @paulobrien on Twitter for updates.

  • Announcements

    • Reminder - MoDaCo position on illegal content

      ILLEGAL CONTENT I'd like to just reaffirm MoDaCo's position regarding piracy and illegal content in the light of some recent questions / postings. Posts will be censored by myself or my moderation team if the contain or link to: Illegal / pirated / cracked software or sites that host such software
      Nintendo emulators / ROMs or sites hosting them (in light of Nintendo's legal stance)


      CUSTOM ROMS

      You may discuss and post links to custom device ROMs on MoDaCo, provided the following rules are adhered to: ROMs must not be hosted directly in topic via the MoDaCo attachment system
      ROMs must not contain any illegal 3rd party software (this includes trial versions included without permission)
      ROMs must give full credit to the original author
      This decision has been taken in light of the huge amount of interest in this area of device customisation within the community, and member feedback! Please note that custom ROM discussion should be kept in specific device sub-areas, (e.g. Kaiser.MoDaCo.com for Kaiser based devices). ISSUES If you have any issues with this policy, please contact me directly via PM. P
    • Support MoDaCo by signing up to a MoDaCo Silver or Gold membership

      To sign up to an annual MoDaCo Silver subscription which will eliminate all ads from the site (as well as giving you access to the MoDaCo Online Kitchens for Android) for only £9.99 using PayPal, Credit or Debit Card, ensure you are logged in to the site, and then click the link below, which will take you directly to the subscription store! You can also sign up to an annual MoDaCo Gold subscription for £29.99, which adds the benefits listed below! PURCHASE A MODACO SUBSCRIPTION - FREE Titanium Backup Mobile for Android worth $5.99! - FREE 1 year PrivateInternetAccess.com worth $39.95! - FREE 1 year LastPass Premium worth $12! - FREE CalcConvert for Pocket PC from Binaryfish worth $17.95! - FREE Calendar Bar for Pocket PC from OmegaOne worth $9.99! - FREE CamerAware for Pocket PC and Smartphone from MoDaCo worth £19.99 / $30! - FREE Chronos for Pocket PC from ActiveKitten worth $14.95! - FREE CodeWallet Pro for Smartphone and Pocket PC from DeveloperOne worth up to $24.95! - FREE Concentrix for Pocket PC from eSoft Interactive worth $9.95! - FREE FlexMail for Pocket PC and Smartphone from WebIS worth up to $59.90! - FREE FTouchSL for Pocket PC from Vekoff s.r.o. worth 10 euro / $12.50! - FREE Jewel Challenge for Pocket PC from eSoft Interactive worth $9.95! - FREE John Cody's Alerts Pro for Smartphone from Omnisoft worth $14.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Dutch for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> French for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> German for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Italian for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Spanish for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Dutch for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> French for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> German for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Russian for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Turkish for Smartphone from Lingvosoft worth $49.95! - FREE Note2Self for Pocket PC and Smartphone from WebIS worth up to $19.90! - FREE Opera 8.60 for Pocket PC and Smartphone from Opera Software worth up to $48! - FREE Pocket Informant for Pocket PC and Smartphone from WebIS worth up to $59.90! - FREE Pocket Launcher for Pocket PC and Smartphone from Conduits worth $9.95! - FREE PTab for Pocket PC and Smartphone from z4soft worth up to $60! - FREE Resco Explorer for Pocket PC and Smartphone from Resco worth up to $49.90! - FREE Safemode for Pocket PC from monocube worth $12.95 - FREE SplashPhoto for Pocket PC and Smartphone from SplashData worth up to $59.90! - FREE Sprite Backup for Pocket PC and Smartphone from Sprite Software worth $29.95! - FREE Teksoft Glyphs UI for Pocket PC and Smartphone from Teksoft €9.95! - FREE Teksoft HeadsetRemote for Pocket PC and Smartphone from Teksoft €4.95! - FREE Traffic Jam for Pocket PC from eSoft Interactive worth $9.95! - FREE unlock (1 per year) from imei-check.co.uk - DISCOUNT of 10% at MoDaCo FairDeal - DISCOUNT of 10% at Semsons.com - FORUM - AD FREE SITE - FORUM - custom rank / title - FORUM - double competition entries - FORUM - double post attachment space - FORUM - no search flood control - FORUM - priority event registration - FORUM - triple PM space
    • Reminder: Selling items on the forum directly is not allowed

      Please note that selling items on the forum directly is not allowed by the forum rules. There is a forum for eBay auctions whereby you can list the items on eBay and link to them there. This is the ONLY forum for this type of activity. You may also advertise links to the eBay forum in your signature. Please note that selling directly in contravention of these rules will result in a warning / suspensions / ban.
Sign in to follow this  
Followers 0

IPv6: Privacy Extensions

12 posts in this topic

Posted · Report post

Did anybody enable Privacy Extensions in the FROYO Kernel yet?

The kernel does not use Privacy Extensions by default, so every mobile can be identified uniquely in the net.

http://www.heise.de/netze/rfc/rfcs/rfc4941.shtml

https://www.codeaurora.org/git/projects/qrd...et/ipv6/Kconfig

can anyone provide the kernel source for the kernel that is used in e.g. Jellyfish and a link to a howto for compiling?

cheers

DM

0

Share this post


Link to post
Share on other sites

Posted · Report post

Did anybody enable Privacy Extensions in the FROYO Kernel yet?

https://www.codeaurora.org/git/projects/qrd...et/ipv6/Kconfig

Android devices tend to be identified by their unique IMEI number which is often sent behind the back of users to advertising and data mining companies to provide "better" service. How would a kernel with "IPv6: Privacy Extensions" contribute to privacy?

Afaik none of the ZTE Blade custom ROM developers have integrated privacy-enhancing features yet. My impression is that only a minority of users currently have privacy concerns. As a result, this seems not have a high priority for developers unfortunately.

Here are some links to other privacy related threads:

Privacy-enhancing Android apps

TaintDroid

Btw, it seems if your second link doesn't work. The first one was a bit over my head.

0

Share this post


Link to post
Share on other sites

Posted · Report post

When the privacy extension flag in the kernel is not set, then the hardware MAC address of the mobile is used to form a part of the internet ipv6 address. so this enables identifying the mobile through EVERY internet packet it sends.

Enabling the flag would be so easy.

It is very sad that hardly anybode cares about privacy when using mobiles!!!

Yes, the second link does not work anymore, I'll look for a replacement.

Thanky for your pprivacy links, will chekc them out.

cheers

DM

Android devices tend to be identified by their unique IMEI number which is often sent behind the back of users to advertising and data mining companies to provide "better" service. How would a kernel with "IPv6: Privacy Extensions" contribute to privacy?

Afaik none of the ZTE Blade custom ROM developers have integrated privacy-enhancing features yet. My impression is that only a minority of users currently have privacy concerns. As a result, this seems not have a high priority for developers unfortunately.

Here are some links to other privacy related threads:

Privacy-enhancing Android apps

TaintDroid

Btw, it seems if your second link doesn't work. The first one was a bit over my head.

0

Share this post


Link to post
Share on other sites

Posted (edited) · Report post

Did anybody enable Privacy Extensions in the FROYO Kernel yet?

The kernel does not use Privacy Extensions by default, so every mobile can be identified uniquely in the net.

I replied to your post in Kallt's Froyo ROM. The extensions are already compiled into the kernel but you need to do some sysctl commands to turn them on.

Edited by Autarch
0

Share this post


Link to post
Share on other sites

Posted · Report post

Thanks Autarch,

I'll try it with sysctl. Never heard of this app before...

http://code.google.com/p/android/issues/detail?id=14013

cheers

DM

I replied to your post in Kallt's Froyo ROM. The extensions are already compiled into the kernel but you need to do some sysctl commands to turn them on.
0

Share this post


Link to post
Share on other sites

Posted · Report post

I'm running JJ-RLS7 without any of the above modifications. I'm on O2 UK. Just trying to see if my phone gives away it's mac address as part of it's IPv6 IP. I'm using http://whatismyv6.com/ via HSDPA (NOT via wireless)

Here are the results:

post-618544-1295296590_thumb.png

As you can see, a IPv4 address is returned. From the text in the screenshot:

If the IPv6 only test shows "The page cannot be displayed" (Internet Explorer), "Server not found" (Firefox), any error or search page then you do not have working IPv6 connectivity. "Normal Test" shows which protocol your browser preferrs when you have both IPv4 and IPv6 connectivity. This page should work even on computers with IPv6 only connectivity.

Clicking "IPv6 only Test" (which in turn links to http://ipv6.whatismyv6.com/ ) The following is returned:

post-618544-1295296610_thumb.png

From this I guess I'm at least not broadcasting my mac address out onto the web (that is beyond the O2 network). Am I lucky that it looks like O2 doesn't support IPv6 yet? or is it a fluke?

Wonder how big problem this is... Would be interested to see if anyone visiting http://ipv6.whatismyv6.com/ gets an IPv6 returned, and which mobile phone carrier you are on.

For those not familiar with the differences between IPv4 and IPv6:

  • A typical IPv4 IP address looks something like 192.168.0.1
  • A typical IPv6 IP address looks something like 2001:0db8:85a3:0000:0000:8a2e:0370:7334

Feel free to post your carrier and IPv4 or IPv6.

- Chris

0

Share this post


Link to post
Share on other sites

Posted · Report post

From this I guess I'm at least not broadcasting my mac address out onto the web (that is beyond the O2 network). Am I lucky that it looks like O2 doesn't support IPv6 yet? or is it a fluke?

Very few ISPs or carriers support IPv6 yet. I happen to work for a University, which does! Generally we find that OSes support it and have it turned on, whilst Network infrastructure tends to support it and have it turned off ;)

Mind you it's showing signs of wider adoption this year (particularly with the supposed running out of IPv4 address space any time now).

0

Share this post


Link to post
Share on other sites

Posted · Report post

Thanks Autarch,

I'll try it with sysctl. Never heard of this app before...

It's not an app; it's part of the operating system ;)

You need to be root to run "sysctl -w" (do "su" first on a rooted ROM) but any user can run "sysctl -a" to display all the settings or "sysctl -r" to read a particular one. I managed it typing straight into a terminal window, but it would be easier using adb. I guess someone could write an app to tweak common settings with it (but would need a rooted phone).

If you add the sysctl commands to /system/bin/userinit.sh, that should run them as root. I guess I ought to try it ...

I should also add I was testing over WiFi. I'm not sure whether Android supports IPv6 over 3G yet (Google search suggests it didn't at least at one point) in the unlikely event the Telcos support it.

0

Share this post


Link to post
Share on other sites

Posted · Report post

Android devices tend to be identified by their unique IMEI number which is often sent behind the back of users to advertising and data mining companies to provide "better" service. How would a kernel with "IPv6: Privacy Extensions" contribute to privacy?

Afaik none of the ZTE Blade custom ROM developers have integrated privacy-enhancing features yet. My impression is that only a minority of users currently have privacy concerns. As a result, this seems not have a high priority for developers unfortunately.

Here are some links to other privacy related threads:

Privacy-enhancing Android apps

TaintDroid

Btw, it seems if your second link doesn't work. The first one was a bit over my head.

and that attitude is appalling. Again, if it were just morons buying mobiles from some box-shifting company well ok. But for a hacker community that cares more about wall paper, tacky widgets and pathetic ugly '3d transitions' than it does about issues like privacy. It is pathetic. There is no other word for it. Pathetic.

0

Share this post


Link to post
Share on other sites

Posted · Report post

If you add the sysctl commands to /system/bin/userinit.sh, that should run them as root. I guess I ought to try it ...

OK, I tried using /etc/sysctl.conf, which doesn't seem to work. Adding two lines to /system/bin/userinit.sh in Kallt's Froyo ROM does:

#!/system/bin/sh
#
#

# Run a2sd
/system/bin/a2sd

# Autarch - Enable IPv6 Privacy options
/system/xbin/sysctl -w net.ipv6.conf.all.use_tempaddr=2
/system/xbin/sysctl -w net.ipv6.conf.default.use_tempaddr=2

# Done here
/system/bin/setprop userinit.filesystem.ready 1
[/codebox]

You can put it in place with adb

  1. [i]adb pull /system/bin/userinit.sh userinit.sh[/i]
  2. [i]adb remount[/i]
  3. edit userinit.sh as above
  4. [i]adb push userinit.sh /system/bin/userinit.sh[/i]
  5. [i]adb reboot[/i]
0

Share this post


Link to post
Share on other sites

Posted · Report post

OK, I tried using /etc/sysctl.conf, which doesn't seem to work. Adding two lines to /system/bin/userinit.sh in Kallt's Froyo ROM does:

#!/system/bin/sh
#
#

# Run a2sd
/system/bin/a2sd

# Autarch - Enable IPv6 Privacy options
/system/xbin/sysctl -w net.ipv6.conf.all.use_tempaddr=2
/system/xbin/sysctl -w net.ipv6.conf.default.use_tempaddr=2

# Done here
/system/bin/setprop userinit.filesystem.ready 1
[/codebox]

You can put it in place with adb

  1. [i]adb pull /system/bin/userinit.sh userinit.sh[/i]
  2. [i]adb remount[/i]
  3. edit userinit.sh as above
  4. [i]adb push userinit.sh /system/bin/userinit.sh[/i]
  5. [i]adb reboot[/i]

seems like kallt is making an addon for enabling this soon..

http://android.modaco.com/content-page/327...tft/page/2520/#

looking forward to that!! ;)

any privacy enhancing apps, anybody??

my dream is a "firefox mini" with all addons available like noscript, abp or customizegoogle ... :)) lol

0

Share this post


Link to post
Share on other sites

Posted · Report post

out of curiosity .... why are some people bothered that their MAC or rather a modified form of it is out there due to the NORMAL workings of stateless auto configuration RADVD OR RTADVD?

are you also going to be manually setting the ipv6 ip of your tv, sat tuner, o!play, fridge, 2 laptops, ps3, nas box, xbox, network radio, toaster, oven, electric and gas meters, switchable bedside lamps etc etc and the 100 other network items youre going to have at home in 10 years time never mind already!

this is how ipv6 and router announcement works

there is of course no reason why you cant manually set the ipv6 ip of your devices or phone (and I do for servers so they have very very identifiable easy to remember IPs) but back to the orig question ... why would you, other than pure paranoia?

I would be more worried about not having an ipv6 firewall

iptables is there in 2.1 but I've not seen ip6tables yet

you really dont know what some of these apps are doing _phoning_ home eh?

something like LittleSnitch on the Mac (OS X) would be nice

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

MoDaCo is part of the MoDaCo.network, © Paul O'Brien 2002-2015. MoDaCo uses IntelliTxt technology.