Non US based VPN ?

Discussion in 'privacy technology' started by Well Connected, Jun 14, 2015.

  1. Well Connected

    Well Connected Registered Member

    Joined:
    Jun 12, 2015
    Posts:
    20
    Just noticed Perfect-Privacy.com being mentioned there and it falls under Five Eyes jurisdiction (i.e New Zealand)

    How is this in that list than.

    By the way , Has anyone heard abt them ?
     
    Last edited: Jun 16, 2015
  2. navigat0r

    navigat0r Registered Member

    Joined:
    Jan 8, 2015
    Posts:
    26
    I'd add ovpn.to to mirimir's list
     
  3. krustytheclown2

    krustytheclown2 Registered Member

    Joined:
    Nov 18, 2014
    Posts:
    210
    Yes, they're very well regarded. I don't know enough about NZ's laws to comment on the location, but I guess I'd trust their gov't over the US or UK when it comes to privacy, but this is my bias more than anything.

    If you want to keep your Whonix setup anonymous and secure though, I would say you need to put more effort into locking down the host and Whonix Workstation (linux, apparmor, dedicated machine etc.), it's a likelier vector for real world compromise than picking one VPN over another, especially since that VPN is behind Tor running in an isolated environment anyways. Maybe it's not as fun or easy as picking which service to buy but that's opsec.
     
  4. SK_Hendrik

    SK_Hendrik Registered Member

    Joined:
    Dec 31, 2014
    Posts:
    8
  5. krustytheclown2

    krustytheclown2 Registered Member

    Joined:
    Nov 18, 2014
    Posts:
    210
  6. SK_Hendrik

    SK_Hendrik Registered Member

    Joined:
    Dec 31, 2014
    Posts:
    8
    @krustytheclown2: thanks for your respons.
    Indeed, we keep some logs, but here is "the why":
    1. Minimum amount of logs is stored by every service to prevent DDOS, abuse and Sybil attacks. Some companies are just more transparent about it. ;-)
    2. Pointing to our FAQ to show it's not black and white: https://www.securitykiss.com/faq/#privacy and https://www.securitykiss.com/about/privacypolicy/
    3. We try to keep the amount of logs to the minimum. Keeping minimum information is in the interest of the user and the VPN provider. On this front we are working on the backend software that will eliminate logging to hard drive at all, and some minimum amount of metadata needed to keep the service running will be kept in volatile RAM for a few hours only. I really want to emphasize that it's only to prevent some forms of attacks.

    Hope this is of any help to you and the other members of this forum.
     
  7. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    anyone tried the riseup vpn ?
     
  8. Jessica19

    Jessica19 Registered Member

    Joined:
    Aug 24, 2012
    Posts:
    13
    Location:
    United States
  9. First I'd like to point out perfect-privacy.com is located in Germany. Not NZ. They are reliable. They had a server raided by the German police and found nothing.

    Second I respect mirimir opinion. Gives great advice on all matters anonymity. But I heard a rumor about insorg.org on a Russian hacker forum.

    From what I could understand apparently the boys at insorg.org were paid a visit by the Russian FSB and they ratted out a customer.

    This could be FUD but as they say in every rumor there some sort of truth. I won't discount insorg.org on that rumor but it makes you wonder.

    My top VPN's are mullvad.net, airvpn.org, prq.se, ivpn.net, vpn.ac, nordvpn.com, & perfect-privacy.com. The rest are not worth mentioning.
     
  10. krustytheclown2

    krustytheclown2 Registered Member

    Joined:
    Nov 18, 2014
    Posts:
    210
    Riseup is very trustworthy. Unlike most VPN's which host their servers in some untrustworthy datacenter, they have their own block of IP's as an ISP. My understanding is that this should make seeing incoming and outgoing destinations much more difficult from a datacenter turned by whatever intelligence agency. Connect to their VPN and run traceroute to confirm this for yourself, your connection should bounce through a few Riseup owned servers before reaching the (NSA-controlled) backbone.
     
  11. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252

    Thanks for sharing that. Russia is a corrupt place, and one never knows. If I were living in Russia, or had major interests there, I wouldn't use insorg.org as my first or last VPN. But in the middle of chains, I like them because there's less chance of cooperation with the block dominated by the Five Eyes.
    Thanks. I'll try some of those others.
     
  12. Yes Russia is very corrupt. But show me one country which isn't? I do agree insorg.org wouldn't be my first choice if I lived in Russia.

    I would also avoid secretsline.biz. Rumored Russian FSB involvement. But it's hard to tell the FUD from fact. Only going by what I hear.

    Another one to avoid is vip72. Every carder on the planet uses them for socks5 proxies. I don't trust a VPN service they run. Call me a skeptic.
     
  13. krustytheclown2

    krustytheclown2 Registered Member

    Joined:
    Nov 18, 2014
    Posts:
    210
    I wouldn't touch any carder-oriented service with a 10-foot pole. They may be honeypots (there was a case with the Secret Service some years ago), their servers will most likely be obtained through carding (draws attention from authorities), and they may be using their service to harvest card numbers and logins for themselves. It's just a nasty group of people that do that stuff.

    I'm guessing that the real hackers will be using their own bots as proxies and RDP's instead of buying them.
     
  14. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    Thanks I will.
     
  15. SmartOne

    SmartOne Registered Member

    Joined:
    May 1, 2013
    Posts:
    4
    Location:
    Canada
    I read an interesting blog post written by IVPN's CEO about the logging issue (https://invisibler.com/vpn-services-and-anonymity/). It raises the question of trust; how much do you 'trust' a VPN provider? However, rather than blindly trusting any company no matter where they are located I think it might be a better strategy to provide as little identifying information as possible. That way it will at least be difficult to connect internet activity directly to you in the event that there is a problem.
     
  16. Palancar

    Palancar Registered Member

    Joined:
    Oct 26, 2011
    Posts:
    2,402
    Agree of course. I preach "partition of trust" where there are 3 providers. To expose me from the exit end you would need to compromise all three, as not even two would get you what you need - me.
     

  17. From my research that is in fact the case. The REAL hackers use hacked RDP's as their exit nodes and hacked SSH tunnels or bots as their entry and middle nodes.

    But I wouldn't go buying RDP'S or SSH tunnels of 'Borris' on a Russian crime forum. Most likely honeypots or worse.
     
  18. anon337

    anon337 Registered Member

    Joined:
    May 30, 2015
    Posts:
    7
    I understand what you have written about Airvpn, but I really rate them as outstanding and their client is by far the best with ability to change ports etc.

    Have you have looked into cryptostom - they have a token based anonymity process. I have a friend that uses and swears by them.
     
  19. Yeah my yearly subscription to airvpn.org just ran out. I rate them very highly and their client is great. I'm waiting until Black Friday/Cyber Monday to buy a new subscription. I have too many VPN's as it is :D So I'm waiting for a 50% off deal before I go back to airvpn.org.

    Cryptostorm is interesting. I've had a look and they look OK but nothing great. Only thing that worries me is lack of servers. Token thing is interesting.

    mullvad.net have the best log in method I think. Only a random generated subscription number identifies you. No log in details needed.
     
  20. One thing to note: Every VPN service will have their i.p's blacklisted. It's just a matter of time.
     
  21. anon337

    anon337 Registered Member

    Joined:
    May 30, 2015
    Posts:
    7
    Mullvad is pretty good and I totally agree with the log in method. The only negative I have with them is, I found them very slow and if I was streaming I would have serious trouble.
     
  22. Reallyo_O What server are you on? I haven't tested the USA server for speeds. But the rest work fine while torrenting and streaming.
     
  23. anon337

    anon337 Registered Member

    Joined:
    May 30, 2015
    Posts:
    7
    When I tried them there was two choices, either Sweden or Netherlands and I tried the Netherlands. Maybe I jumped the gun with them on my initial trial ;) I am glad they work for you mate.
     
  24. krustytheclown2

    krustytheclown2 Registered Member

    Joined:
    Nov 18, 2014
    Posts:
    210
    Some VPN's offer a dedicated IP for an extra fee, which will mitigate this to some extent. However, it is nonetheless pretty easy to tell that it's not a regular home IP because the address will belong to a datacenter block (hence the use of RDP's and proxies for nefarious reasons).
     
  25. Dedicated i.p's are a gimmick. As you said the i.p will come from a data center block of i.p's so it's basically useless.

    Clean IP adresses are becoming harder and harder to come by. That's why APT attribution is getting easier for guys like FireEye/Mandiant.
     
    Last edited by a moderator: Jul 3, 2015
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.