mirror of
https://github.com/trailofbits/algo.git
synced 2025-04-22 09:07:04 +02:00
b4740185e8
If a user is not connected to a trusted Wi-Fi network or if the URLStringProbe fails none of the existing dictionaries match. According to the Apple Configuration Profile Reference[1] section "VPN Payload > On Demand Rules Dictionary Keys" a default behavior for unknown networks with no matching criteria should always be set as the last dictionary in the array. The current default behavior is to allow a connection to occur, but this behavior is not guaranteed. Tear down the VPN connection and do not reconnect on demand as long as the catch-all dictionary matches to guarantee the default behavior and more specifically allow users to access captive portals. [1]: https://developer.apple.com/library/content/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html |
||
|---|---|---|
| .. | ||
| client | ||
| cloud-azure | ||
| cloud-digitalocean | ||
| cloud-ec2 | ||
| cloud-gce | ||
| cloud-lightsail | ||
| cloud-openstack | ||
| cloud-scaleway | ||
| cloud-vultr/tasks | ||
| common | ||
| dns_adblocking | ||
| dns_encryption | ||
| local/tasks | ||
| ssh_tunneling | ||
| vpn | ||
| wireguard | ||