> I know what you're asking yourself and the answer is YES. #Android communicates with #Google services outside an active VPN connection, even with the options "Always-on" and "Block Connections without VPN."
Not saying that makes it right, but perhaps the discussion should be not be focused on Apple specifically.
For those looking for a workaround, you can get a VPN router in my case, a GL.iNet Mango[0] router.
The great thing: even if the VPN connection drops, it doesn't leak your real/naked IP, and also /all/ traffic on an iOS device has to pass through the VPN. No special exceptions for Apple traffic!
The only caveat is you have to carry this when traveling, which means if you're traveling light, carrying this around could be burdensome. If you are at home most of the time though, such a router is invaluable...
I first saw this come up about the Private Relay service. It didn’t make sense to me to worry about it then, because hiding Apple traffic from Apple achieves nothing.
If it’s affecting third party VPNs, I’d like to know more about why Apple made the choice to do this. I want to be able to assume that a VPN tunnel so configured is capturing everything in or out of my phone. If that’s not happening, I’d like to understand why.
VPN was never designed for tunneling all traffic. It was designed to get you virtually into a private network to allow access to computers there. There was never a promise of “full tunnel” by design. So what’s the brouhaha?
When I tell my OS to route all traffic through an interface, I damn well mean all and not just what it feels like. I do not need to justify my desires for what my device does with my data.
I have been a network administrator and have managed our company VPN networks (site to site, as well as client-site). I have considered "Virtual Private Network" to be a "not-physical private network" where one becomes part of that network (whether physical or virtual - since a VPN server can serve as a hub between various VPN clients/sites as well).
With the right settings, one can set up a VPN to carry DNS queries as well - thus effectively giving us a "full tunnel" by design?
Could you share your thoughts and point of view on the above?
Twitter making a big deal out of mostly nothing again. Everybody grab their privacy pitchforks.
In reality, it really doesn't matter much. If Apple wanted to snoop on you, they have every tool available. I assume that everyone who uses an iPhone is logged into iCloud? In that case, nothing you do can't be seen by Apple.
I use an iPhone because I trust that Apple isn't going to sell any of my data or use my data to harm me. I can't say the same about Android.
> If Apple wanted to snoop on you, they have every tool available.
This is missing the point. The complaint is not that iOS is communicating with Apple services but rather that this communication is not occurring over the user's VPN.
> I assume that everyone who uses an iPhone is logged into iCloud?
Which, to me, seems pretty strange since they have taken a public stance for privacy and had already failed with their first foreay into ads (https://en.wikipedia.org/wiki/IAd) ...
Readit News
> I know what you're asking yourself and the answer is YES. #Android communicates with #Google services outside an active VPN connection, even with the options "Always-on" and "Block Connections without VPN."
Not saying that makes it right, but perhaps the discussion should be not be focused on Apple specifically.
The great thing: even if the VPN connection drops, it doesn't leak your real/naked IP, and also /all/ traffic on an iOS device has to pass through the VPN. No special exceptions for Apple traffic!
The only caveat is you have to carry this when traveling, which means if you're traveling light, carrying this around could be burdensome. If you are at home most of the time though, such a router is invaluable...
[0] https://www.amazon.co.uk/GL-iNet-GL-MT300N-V2-Converter-Pre-...
If it’s affecting third party VPNs, I’d like to know more about why Apple made the choice to do this. I want to be able to assume that a VPN tunnel so configured is capturing everything in or out of my phone. If that’s not happening, I’d like to understand why.
It most definitely does not state anything as such in the VPN configuration section of the settings app.
I have been a network administrator and have managed our company VPN networks (site to site, as well as client-site). I have considered "Virtual Private Network" to be a "not-physical private network" where one becomes part of that network (whether physical or virtual - since a VPN server can serve as a hub between various VPN clients/sites as well).
With the right settings, one can set up a VPN to carry DNS queries as well - thus effectively giving us a "full tunnel" by design?
Could you share your thoughts and point of view on the above?
In reality, it really doesn't matter much. If Apple wanted to snoop on you, they have every tool available. I assume that everyone who uses an iPhone is logged into iCloud? In that case, nothing you do can't be seen by Apple.
I use an iPhone because I trust that Apple isn't going to sell any of my data or use my data to harm me. I can't say the same about Android.
This is missing the point. The complaint is not that iOS is communicating with Apple services but rather that this communication is not occurring over the user's VPN.
> I assume that everyone who uses an iPhone is logged into iCloud?
No, I'm not.