my apologies for the long screenshot. i had purchased adguard’s vpn service for five years since its primary adguard service is well know in the iapple ecosystem.

on android, though, their app appears to send data to a lot of third-parties. has it always been this compromised? am i a fool to go for their vpn services as well?

28 points

How exactly are you using the duckduckgo app protection and a vpn simultaneously? DDG sets itself up as a local vpn to be able to track outgoing traffic, and Android doesn’t support concurrent connections. Or is that what adguard does in the background while not active?

permalink
report
reply
8 points

you’re correct, it’s what the adguard app gets up to in the background.

the two vpns are not concurrently active.

permalink
report
parent
reply
25 points
*

After installing AdguardVPN and testing it against Exodus this is what I got:

permalink
report
reply
2 points

would you have done this with the ad guard vpn deactivated but the app still running in the background?

I’ve been using the app for a few montha now and it’s only today that it got flagged in the DDG report. it’s not shown up before.

permalink
report
parent
reply
7 points

Hey I gave it a second try with another tool: PCAPdroid and I’m not sure what I’m looking at … Adguard VPN seems effectively to send a lot of traffic to strange DNS requests…

Just by opening the app and loggin in a fake account I got over 200 requests…

I’m not an expert but those requests seem sketchy !!!

permalink
report
parent
reply
4 points

So at this point you’re still not connecting the VPN or anything? This is just after you log in?

permalink
report
parent
reply
3 points
*

Edit: I’m remembering that some VPN services use users devices as a server of their own, proxying connections for other users on another service. I don’t know what’s going on here, but if you don’t have Tiktok and Snapchat both installed then I’d say that’s likely what’s going on. I’ve never used AdGuatd, there are much better VPN services.

I’m gonna say you have Tiktok and Snapchat installed on your phone? The rest of those are just random services (CDNs, ads, analytics, bug reporting, etc) that background apps (some are from Tiktok and Snapchat, but tons of apps use the same ones) are connecting to.

Set up NextDNS on your phone without any VPN running and odds are you’ll see the same.

permalink
report
parent
reply
2 points

wow. this is good detail, indeed!

so is this an app one should avoid using, then?

permalink
report
parent
reply
21 points

Selling? Probably not.

But I used NetGuard to see specific requests that the AdGuard VPN app made. Then I downloaded AdGuard VPN and opened it. Without even logging in, it pinged:

  • dns.google
  • dns.alidns.com (Alibaba)
  • 2400:3200:baba::1 (Alibaba again)
  • cloudflare-dns.com

I don’t know why it feels the need to ping so many DNS servers before you even type a username, but it does.

permalink
report
reply
14 points

You are using that Duckduckgo thing which is not a reliable source of information.

I would be interested in what a “tracking attempt” would look like.

Your VPN sees EVERYTHING you connect to, if you use HTTPS that is not a big deal but can help target stuff to your usage.

If it is tracking or just traffic passthrough is decided on their servers, which no weird Duckduckgo app can access.

permalink
report
reply
2 points

i get what you’re saying, but the vpn was inactive when the app sent these requests. DDG was active at the time and using the VPN slot.

so it isn’t the vpn functionality, per se, of the app that’s doing anything here.

permalink
report
parent
reply
3 points
*

Thanks, I think it is very relevant to understand how this DDG VPN “tracker blocking” works.

If it is about an app sending requests to lots of domains, this may have many reasons. For example it could check the IP addresses of all these tracking serverers to block apps from communicating with them via IP and not URLs.

This would be a reason that a trusted app connects to tracking servers to update their internal filterlist.

This “known to collect” seems to be unrelated to the actual connection, just “this service often collects data about x”.

If this is true, that is HIGHLY misleading and please update your post to explain that possibility.

permalink
report
parent
reply
2 points

this is a possibility. one that i haven’t accounted for.

but is there any literature that verifies this? the closest I’ve found in context is this page, and I’m not able to resolve what you’re saying with whats on there: https://adguard.com/kb/general/ad-filtering/filter-policy/

i don’t have enough info yet to update the post with this conjecture.

permalink
report
parent
reply
10 points

Don’t use proprietary software as it is not good for privacy or freedom

permalink
report
reply

Privacy

!privacy@lemmy.ml

Create post

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

Community stats

  • 4.6K

    Monthly active users

  • 2.9K

    Posts

  • 78K

    Comments