[jpeg_hero]

No, this doesn’t work on Wifi.

The claim is you need to be on the carrier’s mobile data network, the carrier gives you an IP address, then a website owner asks the carrier who is at that ip address and then the carrier gives the website owner the data that it has on you (your real name, the address where they send the bills, the phone number they assigned to you, etc)

[kevin_nisbet]

Just a word of warning, long term this may not always be a safe assumption.

For supporting technologies like wifi offload, VoLTE, etc the phone can be told to tunnel traffic back to the carrier network, even when using wifi. This is to support features like using wifi to complete voice call's, but could be used for IP mobility as well (keeping you're IP address as you switch access networks).

I'm a bit rusty as I've been out of the industry for a year now and didn't work on this directly, so I forget how the phone get's this configuration. I think it might be an APN setting to connect back to the ePDG when on other access networks, but I could easily be mistaken.

[slipstream-]

You misunderstood: the commenter said they'd provide a passworded wifi network and a sign somewhere saying "visit this URL to get the password for the wifi!"

People would visit that URL using mobile internet...

[CommentCard]

This is exactly what I was describing. You'd visit the site while on cellular data to get the password.

[k_sh]

Yeah, that's what GP is describing, I think - people would visit the evil URL while on a cellular connection in order to, ostensibly, get the password for the secured WiFi connection.