[Bug] Huge privacy issues

[User1l0]

WebRTC doesn't turn off and leaks your ip address. You can't randomize or turn off the browser fingerprinting SmartCookie even leaks the user agent info, Even if it's changed.

This apps privacy features needs to be fixed. Nothing functions normal as it should be.

[CookieJarApps]

WebRTC is the main issue and the reason the setting is called "Enable WebRTC permission requests" and not "Enable WebRTC". This is a WebView issue and isn't something I can do anything about. The idea behind SmartCookieWeb-Preview is to give me more control over these sorts of things.

Using the settings, you can minimize sending some data to sites that are used for fingerprinting, but you'd be better off with SmartCookieWeb Preview + the Chameleon add-on to avoid fingerprinting.

The user agent does change correctly. I assume you're referring to the X-Requested-With HTTP header the browser sends to sites (which sends the package name; hence, the site knows what browser you're using despite the changed user agent). Once again, this is a WebView issue. You can disable it by enabling "Remove identifying HTTP headers" in privacy settings, but you also need to disable "Allow sites to open new windows" in advanced settings because there is a WebView bug which causes crashes when both are on together.

[Wjxfi]

https://www.f-droid.org/packages/de.baumann.browser/ works the same as your browser (webview) and hides webrtc ip completely. The problem is in the browser (smartcookie)

[CookieJarApps]

WebView does not allow disabling WebRTC, but that browser uses a JavaScript workaround that blocks a website from using WebRTC, which is certainly a possible solution to the issue that could be integrated into this browser. I'll add it to the list of planned features for the next update.