Android leaks traffic when performing its connectivity check and neither VPN services nor you can prevent it,
https://mullvad.net/blog/2022/10/10/android-leaks-connectivity-check-traffic/

#vpn and #connectivityChecks on #android

Follow @mullvadnet for more info.

https://nitter.net/mullvadnet/status/1579482024045600770

"If you're using a VPN and want to appear as a regular Android device, the Standard (Google) option is the best fit. Connectivity checks simply make HTTPS and HTTP GET requests with Android's Java standard library with a standard frozen user agent to look for a 204 response code."

#vpn with #grapheneos #connectivityChecks

https://nitter.net/GrapheneOS/status/1579620234566070274

@woodrow
We were speaking from the unencrypted surveillance part, but appreicate your insight into other aspects.

Partly related, we've been noticing a #post2016 trend, including in Firefox and linux distros to do #connectivityChecks regularly — some implementations unencrypted!

Using something like #tcpdump can help identify these. Of course at the hardware level, such software solutions can't help, one'd need other hardware intercepting/anonymising(?) the traffic, if possible.

@sneak

Yes you can disable #connectivityChecks without adverse issues. Connectivity checks are done every 3-5 minutes and only important if you often use random WiFi systems that might require a password to use.

Overwrite settings at '20-connectivity.conf':

sudo bash << EOF
echo "[connectivity]
enabled=0" >> /etc/NetworkManager/conf.d/$(whoami)-connectivity.conf
EOF

#connectivity #surveillance #captivePortal