Dhiraagu has done well, correcting a privacy leak within a day. Whether they read my article or not, I have no idea.
My next focus is on Dhiraagu Mobile Broadband. It is a very good service but is not without problems.
- The program that comes with the mobile broadband USB dongle is quite buggy when used on laptops. Here are the problems with USB Modem.exe :
- It gets stuck. The program doesn’t respond at times and it needs to be ended with Task Manager and restarted to connect/disconnect/send SMS.
- The other issue is that the program doesn’t support IPv6. It is programmed to disable IPv6 in the connection properties.
- The second problem is that Dhiraagu hasn’t designed the system with IPv6 support. With IPv4 already run out of addresses, Dhiraagu should seriously start implementing IPv6.
That’s all the problems I’ve seen with the service so far. Hopefully Dhiraagu will be designing an update to the program and will start using IPv6.
I stumbled upon a potential privacy issue for those using Dhiraagu GPRS, TouchNet or Dhiraagu Mobile Broadband.
But before I go further, lets do some magic. Those using the above networks may be surprised at what I can tell about your connection (opens in a new window). If you found an empty space or blank there, that’s real good.
If you found your mobile phone number or your data sim number, don’t panic. This is a bit of information that is offered (to websites) when your browse the internet. You should already know that websites and police can track you with your IP address. But this is too revealing in my opinion.
I do not know about other GPRS/EDGE/3G/3G+ services like Wataniya. Please comment in my blog if you have info.
If someone is using Vidalia bundle/Tor, could you please check whether it works in that too and comment in my blog.
Comments link is just below the title of the post.
Disclaimer: Any info was obtained from the information offered through your ISP when you browse. No hacking involved. As you browse, your ISP is setup such that the above information is provided to the website(s). That is how I got the information. If you feel this violates your privacy, please complain to your ISP – not about me – about the fact that this information is leaked when you browse. This script does not store any information about you in my website.
Technical aspects:
- It is added by a transparent proxy – you don’t have the power to change it. Atleast you shouldn’t be able to do that. The transparent proxy is the reason why you get a wierd error message like the following: “Error: Requested content ‘www.ductape.net/~azhad/’ cannot be accessed. Error while connecting to server.
- Unfortunately, I am unable to discuss the technical aspects further as they may compromise Dhiraagu. I hope I have given just enough information.
- If anyone at Dhiraagu wants this to be removed, please comment on my blog post. If you do, please write why the above information is being transmitted to every website we visit.
Updates:
- Dhiraagu GPRS/EDGE also affected. Can show a persons real mobile number!
- 8/2/2011 The issue has been fixed. The script no longer works as Dhiraagu is no longer leaking your number to the websites you visit.