Hacker Read top | best | new | newcomments | leaders | about | bookmarklet login

Thanks GitHub. I can turn off FrootVPN now.


sort by: page size:

Seconded. I get so sick of dismissing that idiotic Android warning whenever I turn my VPN on.

This app would like to take over and monitor your internet connection. If you don't understand what this means, press no.

ProtonVPN for mobile is free and prevents this.

OpenVPN on Android can block internet traffic until the tunnel has been established, very handy.

e.g. http://img.nux.ro/4nV-openvpn_seamless.png


Without root there's no other way to route all traffic and android doesn't allow chained vpn's.

It's an excellent app, source code is on github, eventually ended up paying for it. There's far too many apps and system binaries dialing out, it's funny to watch in realtime. What's more amazing is how nothing breaks even when you lock down everything but the few things that need it. Blocking is fine grained and you'll have to scroll through a massive list if you choose to view system apps, but quite happy overall.

Main benefit of the paid option is pcap files. Free version does everything most will want. It's on fdroid.


Wow. This just solved a problem I've been wrestling with for a couple of months.

"I have a silly app that nobody should be able to access but me" is a surprisingly hard nut to crack in a serverless world, as things stand today.


Which is why I am glad I got a firewall on my phone and whitelist selected applications to have internet access.

Which amazes me. Chrome does this check every time network settings change, including a new IP. So your Android phone connecting to various networks just spammed this stuff for no reason. The fact that this fixed dropped root server requests by nearly 50% is astounding.

> app #12 that has God-knows-what baked in and that's going to be abandoned in two years anyway.

It was a revelation putting a Pihole on the network and making a firewall rule that forced any non-Pihole port 53 traffic back to the Pihole. Samsung and Google make a lot of connections to home.


See also: https://github.com/offa/android-foss#-firewall (In particular, AfWall+ for rooted device is quite powerful)

Well. First commit 6 months ago, that thing is a novelty.

Next we'll see how it goes when you'll try to explain to your sister and your mother how to use that android VPN to block ads.


If anyone's looking for an android project, please make one that forwards all hotspot traffic over whatever VPN is enabled. I guess the phone will need rooting.

By the way, my colleague has some crappy Huawei phone, which previously killed background apps [1], but this week received an update that changed the behaviour to simply disabling them from accessing the internet.

[1]: https://dontkillmyapp.com


On Android this can be easily achieved by Tasker.

Personally I have the luxury of running the VPN server at home, so I can just always leave it on.


I use a VPN for privacy, which is great, but routing my traffic through it will exclude me from sites that try to block VPNs (mostly streaming services).

What I really need is Cloudflare's WARP via wireguard config. I love the idea that they'll shield me from my ISP but still provide my real IP to service providers.

I can do this right now with a hack someone wrote https://github.com/maple3142/cf-warp but I don't want to anger Cloudflare.

Cloudflare, if you're listening, is it ok to extract wireguard credentials from your app and use them on my whole network? I'll gladly pay the $5/mo, but I don't want to be banned from Cloudflare or do something you may construe is illegal by extracting keys from your Android app.


I don't know how they're accomplishing it technically, but http://getcloak.com manages to auto-enable my VPN on my iPhone every time I connect to a non-whitelisted wireless network.

I just checked my phone, and Android 4.4.2 supports always-on VPN.

I do this, any traffic to port 53 gets re-directed using IP masquerading to my local DNS server which uses the blocklists from https://github.com/StevenBlack/hosts.

By coincidence since I did that I need to do a hard reboot of my Mi Box android tv device everyday as when you turn it on from standby and open Youtube / Netflix it goes in to a frozen state.


You can use a firewall like AFWall+ to deny every app internet by default.
next

Legal | privacy