IETF Logo Mail Archive

Re: [rtcweb] Please require user consent for data channels

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Fri, 17 July 2015 19:11 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 749DA1A00B5 for <rtcweb@ietfa.amsl.com>; Fri, 17 Jul 2015 12:11:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.999
X-Spam-Level:
X-Spam-Status: No, score=-0.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sqPlTVma2N3R for <rtcweb@ietfa.amsl.com>; Fri, 17 Jul 2015 12:11:27 -0700 (PDT)
Received: from mail-wi0-x230.google.com (mail-wi0-x230.google.com [IPv6:2a00:1450:400c:c05::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 76EBB1A00AC for <rtcweb@ietf.org>; Fri, 17 Jul 2015 12:11:26 -0700 (PDT)
Received: by widjy10 with SMTP id jy10so48498106wid.1 for <rtcweb@ietf.org>; Fri, 17 Jul 2015 12:11:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-type; bh=BizI0eL2qZonQ8irwz4HJBFHBDZ73Mln9jYthtORQEg=; b=R3yjbkr6gg5eH/HCD3W7fI1P+pCvMzbzgivnGwcfJI5+r8+GkZ1LTQ/BHUNsMj/KPg MzGRX+y95zLdka31k/Rh61JyR76SMZ9OcaRSLpDRCWBJLtNWizqRpj5X5SqXdi0+cBwd BA07oNEh6tU2SXN/iAjl2Si7sw7wnR+EiqTb/h2TQUEO0BZ+tE8D7IreVLttaSovkU9F 5G3dQy8Qb8BT3kvewDmhiBwqtI1pdCccxRGL2IOviwKy0HLjfs6MXupSdzMeoFs3/Pq3 J7QZb9z0s46RSbqrupJfrBO0/IRtYS0IGUGmoUZgJFpCdVX61wDO+8tObac5Rqpr13Pt nCHw==
X-Received: by 10.194.81.67 with SMTP id y3mr31722473wjx.7.1437160285193; Fri, 17 Jul 2015 12:11:25 -0700 (PDT)
Received: from [192.168.0.193] ([95.61.111.78]) by smtp.googlemail.com with ESMTPSA id lq9sm19539954wjb.35.2015.07.17.12.11.22 for <rtcweb@ietf.org> (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 17 Jul 2015 12:11:23 -0700 (PDT)
To: rtcweb@ietf.org
References: <CA+65OspMD_PVjk0BXh7t4LtjmFDcDatoeNjFQOO_OVtC-Br+OA@mail.gmail.com> <CAOJ7v-0UBGtP0-atxP7X4OTj-H6Lost5o42aAS65mA6CEqcQsw@mail.gmail.com> <CA+65OsrhXHK+cRAFLCZFt+34vr8eRhj+CN3DgznUBfSwmWYggw@mail.gmail.com> <CAOJ7v-24VCW6kkn7LOLkqZzhYEU0r=nmd_F7Zns1rnyqKN6xAg@mail.gmail.com>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Message-ID: <55A95364.2070806@gmail.com>
Date: Fri, 17 Jul 2015 21:11:32 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.0.1
MIME-Version: 1.0
In-Reply-To: <CAOJ7v-24VCW6kkn7LOLkqZzhYEU0r=nmd_F7Zns1rnyqKN6xAg@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------060507040108040800090400"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/kl1_v_WIDGnCihOxoiSpYSgy1FQ>
Subject: Re: [rtcweb] Please require user consent for data channels
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2015 19:11:28 -0000

If I have understood the looong thread correctly, the issue is that 
Chrome overrides the OS default route and sends the STUN requests via 
all available interfaces, therefore leaking the IP addresses on the process.

AFAIK, that behavior is a Chrome implementation decision (wrong in my 
opinion, but understandable) and it is not specified on WebRTC, so while 
acknowledging the importance of the issue, this is not something that we 
should discuss in this mailing list, except if we decide that we should 
decide to explicitly forbid this behavior and add it to the security draft.

I will send a reply to discuss-webrtc to continue the discussion from a 
Chrome point of view.

Best regards
Sergio


On 17/07/2015 20:36, Justin Uberti wrote:
> The title is somewhat inaccurate, but 
> https://code.google.com/p/chromium/issues/detail?id=457492 is the 
> current bug for this.
> See also https://code.google.com/p/chromium/issues/detail?id=333752, 
> from which the above bug was spun out.
>
> On Fri, Jul 17, 2015 at 11:22 AM, Daniel Roesler <diafygi@gmail.com 
> <mailto:diafygi@gmail.com>> wrote:
>
>     On Fri, Jul 17, 2015 at 11:04 AM, Justin Uberti
>     <juberti@google.com <mailto:juberti@google.com>> wrote:
>     >
>     > This is already possible using non-WebRTC technologies, e.g. web
>     sockets. As
>     > such, I don't think that permission should be needed to create a
>     data
>     > channel, or receive (but not send) media.
>     >
>
>     The big difference is that Web Sockets starts off with an HTTP
>     request, so it can be filtered by various plugins (PrivacyBadger,
>     uBlock, Ghostery, etc.). WebRTC is invisible to those services since
>     it does not have any HTTP requests at all. In fact, is WebRTC the only
>     browser standard (i.e. not flash) that can fire off a DNS request
>     that's not (at least at first) for an HTTP address[1]? Lacking an
>     initial HTTP request makes it impossible for plugins to selectively
>     filter these requests, so they have to fall back to an all-or-nothing
>     config setting approach (which hurts WebRTC adoption in
>     general)[2][3].
>
>     > That said, I agree that WebRTC should not allow drive-by
>     harvesting of IP
>     > addresses, and we intend to make changes to Chrome to prevent this.
>
>     Great to hear! Thanks! Is there a bug that is tracking this?
>
>
>     [1]:
>     https://www.w3.org/wiki/Privacy/IPAddresses#Using_wildcard_DNS_entries_as_persistent_identifiers
>     [2]: https://github.com/EFForg/privacybadgerfirefox/issues/394
>     [3]: https://github.com/gorhill/uBlock/releases/tag/0.9.9.3
>
>     Daniel
>
>
>
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email