Apple Private Relay (APR) Block / Allow
If you are an Apple Safari user this applies to you –
The Apple Private Relay (APR) is essentially Apple’s version of Tor: a browser-based Encrypted tunnel, using HTTPS, that forces all of your data through Apple’s servers, and then out to a Raw Internet.
APR will not honor any of your internet filters, or parental controls.
Note that Safari on iOS now default opens all new tabs in APR – unless you turn it off.
Therefor, Kibosh must turn off APR by default – BUT, you can easily enable it, per device or Profile, if you need to.
This is why you see the “privacy warnings” everywhere from Apple when you setup your Kibosh – you are in fact now truly private with Kibosh, but Apple does not like that 🙂
What is APR?
Read Apple’s official explanation (with commentary).
What happens with APR is turned on?
- Your Internet will be Raw- when using Safari
- All_of_your_data will go through Apple’s servers first – when using Safari
Is there a benefit to using APR?
None that I can think of – if we have turned APR off correctly you should not notice any impact to service.
Why would you want to use APR?
If you want to use Safari on iOS without “privacy warnings”.
Or if iCloud or apple’s email is too slow (although it should not be as we’ve followed Apple’s direction for turning off APR).
You want to use raw internet and trust Apple.
What kind of issues will leaving APR off cause?
Again, none if we’ve done our jobs and disabled APR correctly.
If we didn’t, then Safari might not work well and iCloud could be slow.
We recommend switching to Chrome, Brave or FireFox.
What do you recommend as best options to deal with APR?
We recommend switching to Chrome, Brave or FireFox as APR only works with Safari.
How to un-Block (i.e., re-enable) Apple Private Relay:
Step-by-Step:
- From your Kibosh Portal…
- Go to Devices
- Double-click on an Apple Device
- Filters
- Other
- Enable Apple Private Relay
Watch: How to un-Block Apple’s Private Relay on an Apple device
.
iCloud Private Relay is an internet privacy service offered as a part of an iCloud+ subscription that allows users on iOS 15, iPadOS 15, and macOS Monterey and later to connect to and browse the web more privately and securely. Private Relay protects users’ web browsing in Safari, DNS resolution queries, and insecure http app traffic. Internet connections set up through Private Relay use anonymous IP addresses that map to the region a user is in, without divulging the user’s exact location or identity. Learn how to provide the best possible experience for users of Private Relay on your network or website.
Sounds noble of Apple yes?
- No mention of the fact that all of your data will now go through Apple’s Content Filtering Servers for analysis and recording.
- ‘insecure http traffic’ – the entire HTTPS Everywhere “for our protection” is a psyop to get everyone onto/into HTTPS:
- HTTPS requires constant renewal which costs hundreds of dollars and hours of someones life to maintain.
- All the big tech companies of course own the HTTPS certificate companies.
- HTTPS is being used as a Digital fence to prevent anyone but the big tech companies from seeing what’s inside the HTTPS tunnel
- Unless a website is hosting PII – there is no need for HTTPS
- HTTPS requires constant renewal which costs hundreds of dollars and hours of someones life to maintain.
“Be patient — be patient, my child; for in patience know ye thine own soul!”
