IETF Logo Mail Archive

Re: [rtcweb] Please require user consent for data channels

Justin Uberti <juberti@google.com> Fri, 17 July 2015 20:26 UTC

Return-Path: <juberti@google.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 705C21A1B0C for <rtcweb@ietfa.amsl.com>; Fri, 17 Jul 2015 13:26:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.388
X-Spam-Level:
X-Spam-Status: No, score=-1.388 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UAWZD8vGkcS5 for <rtcweb@ietfa.amsl.com>; Fri, 17 Jul 2015 13:26:18 -0700 (PDT)
Received: from mail-ig0-x234.google.com (mail-ig0-x234.google.com [IPv6:2607:f8b0:4001:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 83CF01A1B05 for <rtcweb@ietf.org>; Fri, 17 Jul 2015 13:26:18 -0700 (PDT)
Received: by igcqs7 with SMTP id qs7so45538448igc.0 for <rtcweb@ietf.org>; Fri, 17 Jul 2015 13:26:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=eCKJdgOXhJxPlXnL0etxXjSoeP61NrGT9e/DebrUYrI=; b=FZ1FB3s17RuCx0hl2XFrqCkKIt2iSGTfdQlKoCIcQ42Pzpyz2xkZ/GvtcSrC57vO4J TnjUpRRC17TGD/BWPKRKgUe9hCBvUYP2WHnaM/kj1yYN3Jy6gxgTEXGVtzfbV8fOBuXw fwygEpwdhTO/tUG4j8LEJuq2IVLXySo0SK08oWIyyycFRPH1yp59awO5bGrq+KvK168Z U198QJX3Zz9pXlyqvbdx5xImP4seuX+ZwIiNuzFsOGpcIRPaPQ4XvHIfHIAmllE1Sewf 5ZzDnWPSonng7wcHqbSjAv4Bfz7kKSba2xswjUMBJWJSvN0H+qWZfLC4dP1pBrTLM+27 LXzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=eCKJdgOXhJxPlXnL0etxXjSoeP61NrGT9e/DebrUYrI=; b=aWjvT0kKK/D7JK4aVqCoYMbMDGBuak88SMYzmuOa3aFbBv4B+6EBCqJH8T01BjXaeE z7EH6KVmMoxE353Ly+zgVc/MrzRZWE53KXP74VkktGgbMcIyXTAfSmcp1CoxM7/TXmNv wi1dkoOpsl4yps4HIkAbjDEgN6iqNgseNnM42CsIP9DLgv6Z7YlcawwY0Af9bL0QgILM ExaythvO57XAK9Zf6jF0zffG1k0JVVPaOpIFStn2W6oMl7/4yi1Isyiy7eJ91Tm+kJXj AUboAprhuLjiFoe71xLF1DpS/pGTz5IuPjD8QmYd9Q31vN6AF1gKDXHqjyZGx4w8CGs7 NtmQ==
X-Gm-Message-State: ALoCoQmUDP73Lwq8tIqjMMXNastNKqxpGiFXUdzi7h5KGsEtgmK3qf6UEgE7hUGU3i0VT3rHhFYn
X-Received: by 10.50.29.75 with SMTP id i11mr288807igh.50.1437164777847; Fri, 17 Jul 2015 13:26:17 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.64.228.234 with HTTP; Fri, 17 Jul 2015 13:25:57 -0700 (PDT)
In-Reply-To: <55A95364.2070806@gmail.com>
References: <CA+65OspMD_PVjk0BXh7t4LtjmFDcDatoeNjFQOO_OVtC-Br+OA@mail.gmail.com> <CAOJ7v-0UBGtP0-atxP7X4OTj-H6Lost5o42aAS65mA6CEqcQsw@mail.gmail.com> <CA+65OsrhXHK+cRAFLCZFt+34vr8eRhj+CN3DgznUBfSwmWYggw@mail.gmail.com> <CAOJ7v-24VCW6kkn7LOLkqZzhYEU0r=nmd_F7Zns1rnyqKN6xAg@mail.gmail.com> <55A95364.2070806@gmail.com>
From: Justin Uberti <juberti@google.com>
Date: Fri, 17 Jul 2015 13:25:57 -0700
Message-ID: <CAOJ7v-3t9BQabR2e4EHs4G0Sec4sU9DFC2aiSXXYrat+an+RYg@mail.gmail.com>
To: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Content-Type: multipart/alternative; boundary="047d7bd76778116050051b180001"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/gFDt_95JWijWmxAQxlU3mWWE3Yc>
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Please require user consent for data channels
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2015 20:26:20 -0000

What you describe is the proper operation of RFC5245, so this isn't a
Chrome implementation decision (Firefox behaves the same way, and I assume
Edge will as well).

However, we have been thinking about whether refinements to the behaviors
specified in RFC5245 are warranted in the web context.

On Fri, Jul 17, 2015 at 12:11 PM, Sergio Garcia Murillo <
sergio.garcia.murillo@gmail.com> wrote:

>  If I have understood the looong thread correctly, the issue is that
> Chrome overrides the OS default route and sends the STUN requests via all
> available interfaces, therefore leaking the IP addresses on the process.
>
> AFAIK, that behavior is a Chrome implementation decision (wrong in my
> opinion, but understandable) and it is not specified on WebRTC, so while
> acknowledging the importance of the issue, this is not something that we
> should discuss in this mailing list, except if we decide that we should
> decide to explicitly forbid this behavior and add it to the security draft.
>
> I will send a reply to discuss-webrtc to continue the discussion from a
> Chrome point of view.
>
> Best regards
> Sergio
>
>
> On 17/07/2015 20:36, Justin Uberti wrote:
>
> The title is somewhat inaccurate, but
> <https://code.google.com/p/chromium/issues/detail?id=457492>
> https://code.google.com/p/chromium/issues/detail?id=457492 is the current
> bug for this.
> See also https://code.google.com/p/chromium/issues/detail?id=333752, from
> which the above bug was spun out.
>
> On Fri, Jul 17, 2015 at 11:22 AM, Daniel Roesler <diafygi@gmail.com>
> wrote:
>
>> On Fri, Jul 17, 2015 at 11:04 AM, Justin Uberti <juberti@google.com>
>> wrote:
>> >
>> > This is already possible using non-WebRTC technologies, e.g. web
>> sockets. As
>> > such, I don't think that permission should be needed to create a data
>> > channel, or receive (but not send) media.
>> >
>>
>> The big difference is that Web Sockets starts off with an HTTP
>> request, so it can be filtered by various plugins (PrivacyBadger,
>> uBlock, Ghostery, etc.). WebRTC is invisible to those services since
>> it does not have any HTTP requests at all. In fact, is WebRTC the only
>> browser standard (i.e. not flash) that can fire off a DNS request
>> that's not (at least at first) for an HTTP address[1]? Lacking an
>> initial HTTP request makes it impossible for plugins to selectively
>> filter these requests, so they have to fall back to an all-or-nothing
>> config setting approach (which hurts WebRTC adoption in
>> general)[2][3].
>>
>> > That said, I agree that WebRTC should not allow drive-by harvesting of
>> IP
>> > addresses, and we intend to make changes to Chrome to prevent this.
>>
>> Great to hear! Thanks! Is there a bug that is tracking this?
>>
>>
>> [1]:
>> https://www.w3.org/wiki/Privacy/IPAddresses#Using_wildcard_DNS_entries_as_persistent_identifiers
>> [2]: https://github.com/EFForg/privacybadgerfirefox/issues/394
>> [3]: https://github.com/gorhill/uBlock/releases/tag/0.9.9.3
>>
>> Daniel
>>
>
>
>
> _______________________________________________
> rtcweb mailing listrtcweb@ietf.orghttps://www.ietf.org/mailman/listinfo/rtcweb
>
>
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb
>
>

v2.23.0 | Report a Bug | By Email