How does Hotspot Shield VPN handle SSL (HTTPS) traffic?

Toggle sidebar Toggle sidebar
B

BrazilianBlue

Honorable
May 14, 2013
5
0
10,510
Hi everybody.

I was wondering about the way Hotspot Shield for PC handles SSL (HTTPS) traffic.

With Hotspot Shield running, I browsed Whatsmyip.com and the results were disturbing:

1) http://www.whatismyip.com/ => Hotspot Shield proxy IP shown.
2) https://www.whatismyip.com/ => My real IP shown!

Over non-secure (HTTP) connections, even flash and java tests (e.g., ip-score.com decloaking tests) are unable to discover my real IP address, but there seems to be an issue with Hotspot Shield and secure traffic.

Does this software completely ignore SSL traffic?

Thanks.
 
Sort by date Sort by votes
The intention of Hotspot Shield is, to encrypt your data on the wireless connection, so nobody else can listen to it. https traffic is already encrypted and the secure connection is initiated by your browser. A redirect to another ip-address would require a man-in-the-middle attack and that´s what we sure don´t want.
 
Upvote 0 Downvote

Taken from the Hotshield website:

Protect your IP address – Our VPN software enables you to protect your IP address so you can enjoy private browsing and prevent hackers and spammers from monitoring your online activities. http://www.hotspotshield.com/hide-ip-address

Surf the Web anonymously – By creating an encrypted tunnel between your computer and our servers, Hotspot Shield enables you to surf the Web anonymously without being tracked or spied on. http://www.hotspotshield.com/anonymous-web-surfing
 
Upvote 0 Downvote
That is a bunch of bull sales stuff. It assumes you are running behind a router using private addresses. You are far from anonymous from the end servers you are using. They can get the serial numbers of your cpu and video cards if they want. They are playing fast and loose with the terms. Your actual IP is in no way protected from hotspot attackers they can see it. They can't see what you are doing so much but they can directly attack your machine if they choose. The far end device also can get your actual IP if you are running without a nat device.

Too many people have no clue how things work and just believe the marketing pitch....maybe they think if they drink red bull they can fly too.
 
Upvote 0 Downvote
Your claim was that Hotspot Shield was meant to encrypt data and hiding IP was just a byproduct. They clearly state the hiding of your IP is one of their main features.

So OP was correct to be disturbed about the https results.
 
Upvote 0 Downvote
1) http://www.whatismyip.com/ => Hotspot Shield proxy IP shown.
2) https://www.whatismyip.com/ => Shows real IP !

Over non-secure (HTTP) connections, even flash and java tests (e.g., ip-score.com decloaking tests) are unable to discover the real IP address. This is because the hotspot shield do not change your IP permanently, It changes your IP address temporarily. So a secure connection website can detect your IP address.

If you have any more doubts about hotspotshield, Go to : http://hotspotshieldproblemfix.blogspot.com and learn more tips about hotspot shield.


 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom