Most VPN Services are Terrible

Most VPN Services are Terrible
VPN Pre-Shared Key matchup Bingo

https://gist.github.com/kennwhite/1f3bc4d889b02b35d8aa

 

%100 agree with you. I have tired many VPN services that are claiming there are no limitations. What kind lie is it?.

 

Well which ones are good? And if you really know.

 

NONE.

 

perfect-privacy vpn.

 

It's leak-free in Windows, but in OSX leaks IPv4 while reconnecting after uplink interruption.

I do like the option in their client of cascading/chaining multiple servers. Multi-hop à la carte.

 

@mirimir : I think nobody knows more about this stuff than you. So what's your general opinion? What do you say about PacketSmuggler's comment?

 

cryptostorm is the best non logging vpn for me

https://www.cryptostorm.is

 

CryptoStorm leaks both IPv4 and IPv6, in both Windows and OSX.

But I do like their setup for buying access.

 

The tl;dr:

I agree somewhat, but it's not that simple.

1. I never use any of my meatspace email addresses. Often I use https:/anonbox.net/
2. I always use Bitcoin, anonymized appropriately.
3. I use stock OpenVPN daemon in Linux, or pfSense VMs. I tested binary installers in Windows and OSX, where available, because that's what naive users typically do. It does seem that some providers are abusing root rights to monitor user activity. That is totally unacceptable, and providers doing that need to be named and shamed.

 

I just tried it,it reveals the header(raw data).Unless i'm doing something wrong?

 

It's not secure, I admit

But it is quick and easy

Is there better disposable email?

 

I never used a DE before so can't personally vouch for 1,maybe someone else can chime in.

 

So...AirVPN is bad now? I ask because it's not mentioned. Is it covered under the blanket statement that most vpns are bad. How is cryptostorm different?

thx.

 

As i understand VPNs are not met for need for Speed.

 

No. This is about VPN Providers having a one public "Secret Key" for all users for L2TP/IPsec VPNs. L2TP/IPsec is still considered reasonably secure for normal use, but if the secret key is not secret, it is basically as insecure as plain text.
VPN providers not mentioned are either not tested or don't offer L2TP/IPsec VPNs. I think AirVPN only offers OpenVPN, but I could be wrong.

Of course it is true that it only affects the L2TP/IPsec VPNs so OpenVPN from the mentioned providers is theoretically still secure. On the other hand, one should wonder if their (in)competence can be trusted..

 

The key point of the site that OP linked is that most VPNs implement IPSec with insecure pre-shared keys. That's irrelevant for me, because I always use OpenVPN.

AirVPN is one of the best VPNs, I think. Their Windows client didn't leak at all. But their OSX client does need some work

 

Ok. Thank you for that clarification mirimir. That helps. Also, have you been able to test AirVPN's Eddie experimental version? It has a new way of blocking on drop that I'm interested in having tested.

 

does doublehop.me leak?

 

I used v2.10 in both Windows and OSX. Please post a link to Eddie.

 

Here you go.

 

Ive used Eddie before on Linux and it was solid- wireshark showed no leakage whatsoever (it uses IPtables rules to ensure no leaks) even when I tried to instigate leaks.

However, because I hate having the eddie client open and running, I just use openvpn and network manager (and have firewall rules to gaurantee no leakage). I manually input all the servers I care about, and then have eddie just in case. Eddie is nice if you need to do ssh or ssl tunneling (to obscure vpn usage, at least temporarily).

Ive had great luck with AirVPN in terms of speed and stability, but I might switch to NordVPN next time I need to renew my VPN (NordVPN is based in Panama which is preferable to AirVPN's Italy... I think. How important the established home of the VPN isnt completely clear versus the location of the exit server being used). Ive also considered iVPN... Edit: crap, scratch NordVPN based on that article...

 

I use nordvpn with openvpn client. So far I had good experience with it and it also provides TOR integration

 

Perfect privacy = No log (proofed server seized no logs)

Airvpn = Not 100% sure about no log

 

I think most VPNs keep logs of their users. When I'm talking about logs, I'm talking about ip logs. So in other words, if the police were to ask the VPN provider the ip logs (or the ip address) of someone suspected of illegal activities, the VPN provider would be insane to not provide the cops the ip logs. The cops will sooner or later get the ip logs of the person doing the illegal activities.

Remember, everything on the Internet is traceable, and there is no such thing as 100% anonymity online. The best you can do is get partial anonymity online, so that Big Brother doesn't constantly know everything you are doing.