[guardian-dev] vuln: malicious Android apps can bypass active VPN configuration

Pranesh Prakash pranesh at cis-india.org
Sun Jan 19 15:05:55 EST 2014

Nathan of Guardian <nathan at guardianproject.info> [2014-01-18 14:25:53 -0500]:
> Also that whole feature is broken in 4.4!

How is that?  I'm on 4.4.2 and am using "OpenVPN for Android" (which uses the Android 4.0+'s VPNService API), and it seems to be working fine.  Is there any reason to prefer OpenVPN Settings?

Pranesh Prakash
Policy Director, Centre for Internet and Society
T: +91 80 40926283 | W: http://cis-india.org
Access to Knowledge Fellow, Information Society Project, Yale Law School
M: +1 520 314 7147 | W: http://yaleisp.org
PGP ID: 0x1D5C5F07 | Twitter: https://twitter.com/pranesh_prakash
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20140119/dba220d1/attachment.pgp>

More information about the Guardian-dev mailing list