I haven't been around for awhile, or heard anything about the going ons in the security community as a whole. But what I'm most interested in right now in particular is VPN's. Which ones are the best ones these days? My criteria... Trustworthiness?... If they're quick to dime you out if pressured to, then they're of no use to me. Tech: I need to know that they're up to date with the tech/encryption Deployment: How simple is it to deploy? And how many different ways can you? Like is it simple to just get a config. file from their website and maybe add it to your OpenVPN folder... or maybe even right into your router? How to pay?: Preferably I'd like to be able to pay ala the Mullvad fashion... cash money in an envelope along with nothing else but a Customer ID number and said money. And for that matter is Mullvad even that way anymore? I sure hope so. I guess it doesn't really matter how you pay the first hop since your ISP will be able to see their IP address anyway, but it would still be nice to be able to pay both VPN providers with cash and be anonymous that way... or Visa Gift Cards.
personaly i would go with perfect-privacy vpn. Its trustworthly and maybe one of the best out there if u want to stay anonym. sure, ur isp provider knows u use a vpn but they are unable to know what u visit or what u do because of the encryption.
Right now I have Mullvad, Air, and PIA. I run air on my host computer and either PIA or Mullvad on my VM. I'm not so sure about PIA so I am thinking of switching. Air has a new feature (at least it's new to me). It has a network lock that forces all traffic on your computer through air or there is no connection. I accidentally disconnected the VPN without disabling the network lock one time and when I turned my comp on the next day I couldn't connect to the internet. It took me a while to figure out what was going on. I finally remembered and went into adapter settings and reset windows firewall to default and that did the trick. When I use Mullvad on my VPN while airVPN is connected on my host machine, I get a lot of disconnects from Mullvad, sadly. I guess I'll have to quit using it, although I really like them and have always had the impression that they are very trustworthy. From what I have read about IVPN, I suspect that they may be the most trustworthy. I plan on adding them soon. I can't comment on all of the technical stuff but of course Mirmir can and he is very familiar with them. https://www.ivpn.net/knowledgebase/91/How-can-I-pay-with-cash.html
They may not be able to see exactly what you're doing, but they can see your WAN IP. With that they can see other things, like where you're going. That's why it's important to have a 2'nd hop. Your ISP can't see that IP, which effectively becomes your new WAN IP. And even better if you can pay for that hop anonymously so that they couldn't even tell who you are if you used it from a hotspot.
I've read all of his material. In fact it was he that I was hoping would chime in here. He's like the Michael Jordan of VPN knowledge.
I encountered the following article on Ars Technica yesterday which is worth the read about VPNs: The impossible task of creating a “Best VPNs” list today -- Tom
I'm just about done with a huge (for me) VPN testing project. IPv6 leaks are the new thing to worry about. But I'm not going to say much more about it until the results are published. Just about any of them are OK if you use your own firewall rules.
A quick question ( and probably not a smart one ) ..... what effect does unchecking the IPv6 box in Windows have ? ie via " Network and sharing " -> "Network connection status " -> properties " Also , I have been reading about "Streisand" server creation , here :- https://github.com/jlund/streisand But I simply don't know enough about the subject to judge the implications .....
That should do it. But for backup, you could also drop IPv6 in your router. That's a way to create your own VPN on a VPS. It would probably be less likely blacklisted. But you'd be the only one using it. Unless you shared the credentials. And then it'd be more likely blacklisted
I'm hoping you will let us know when and where you publish them I think I speak for many when I say how much we appreciate your sterling work on these matters and your willingness to share that knowledge . Many thanks !
I have used basically every VPN out there. Some are great. Some are awful. Some are average. mullvad, airvpn, insorg, ivpn, nordvpn, perfect-privacy are still the go to VPN's I would choose. But I have started using a few VPN's that are not well known to many members here. If you like browsing Russian forums then you will probably know these VPN's Currently using Triple VPN from https://multi-vpn.biz/. RU based. Expensive. So far good service. Also using https://www.1vpns.com Quad VPN. RU based. Expensive. So far good service. I am also employing double layered SSH connection using RemoteDesktopManager from private seller.
https://cryptostorm.is/ token-based network access no central office, anywhere open code, open model bare metal servers hashed tokens, 100% anonymous real crypto, real expertise ephemeral ciphers, PFS-based
I only trust my own VPN. Since I already have various server's around the world, I just needed to install a VPN server on the one's I wanted and no need for a 3rd party VPN provider. Some places like online.net sell server's extremely cheap, cheaper than some actual VPN providers, these are entire servers so e.g. can also use as a dnscrypt endpoint resolver.
The following website is a great place to start with lots of information regarding what to look for about VPNs and many other related privacy topics: Privacy Tools - Encryption against global mass surveillance Alternatively, I seem to remember that the Torrentfreak website has a comprehensive list of questions/VPNs that includes information to consider when choosing a VPN provider. -- Tom
Russian VPN's sound like a good idea to me. They'd never cooperate with the US. Please tell me you're favorite/recommended one. I know I'm using Mullvad as my 2'nd hop. I need 1 more and am looking for recommendations. And I'd value yours a lot.
I wish OpenVPN used GNUTLS instead of PolarSSL. Everyone, actually. The benefits are so obvious I'm surprised it hasn't occurred to them yet to go that route.
I can't really say there is a best one. They all offer different levels of security and anonymity. But I like https://multi-vpn.biz/ the best so far. They are vouched on most Russian boards. I would avoid insorg.org just because there were rumors going around that they ratted out a user to the Russian FSB. Also avoid securelines since it was rumored the Russian FSB took over that service.
OK, but unless you're doing something that upsets Russian government, do you really care? I mean, the NSA arguably has everything else pwned.