Discussion in 'privacy technology' started by DasFox, Nov 2, 2010.
janusvm.com has been down for days. Does anyone know what the deal is with them?
Hi wkussmaul this isn't a support section, it's only to list VPNs to help people find a service along with some input/feedback on them...
I was unaware of this, but thanks for pointing this out.
Though it hasn't been updated in a few years, JanusVM remains the best Tor VPN that was ever written, IMHO. Rather than being application specific, JanusVM runs ALL your TCP connections on your machine, including DNS requests through Tor.
It can be somewhat balky to work with, but it still works well.
Will try and find out what's going on with the site, if that's possible.
Ok guys, here's something that I don't recall being discuss that really needs some heavy consideration.
Here are some problems I see with all these so called professional VPN companies, all they are doing is running out to any hosting company paying for server hosting from that compay, meaning, paying to use their hardware and then just install their software, of course OpenVPN and calling themselves a VPN provider and offering us service...
So here we go...
1. What's wrong with the above picture?
2. What should be done instead?
So do you honestly think when we are talking about finding high-levels of professional VPN services for our privacy/security/anonymity you want to use one of these so called VPN providers going this route? Of course not, because a hosting company is just that, a 'Hosting' company, they are not specializing in this level we are seeking. But then you are saying to yourself, well the VPN provider is, so why does the Hosting company need to specialize in any of this? Well the problem is, it's their hardware, sitting somewhere in their building, that you are actually placing your life in and not just the VPN provider, so you need to consider all the possible negative outcomes here and there are many...
So, when privacy/security/anonymity are your TOP priority then forget using VPN providers that are going through typical hosting companies and be sure to find out and if they say they are using a hosting company then find out what kind of hosting. If they use some type of hosting company, then it needs to be one that specializes in offering services as it pertains to VPNs and not just a general hosting company, if there is even such a thing...
A lot of VPN providers will tell you they own their hardware, well if they live half way around the world from it, ask enough questions to figure out how they own it!
I'm not well read on this subject. As such, I quite possibly may even be using the wrong terminology and what I want may not even be out there, so please be kind.
In the simplest of terms, cause that's how I think, I'm trying to find something that will let me change the IP address that my connection tells the website AT WILL. Think of it like this - I want to be able to connect as 1 IP, disconnect, then reconnect as another IP by clicking a button or something.
Anyone know of any that do this? I've tried reading on this at the sites of some of the software that I have googled, but I'm not getting anywhere in my search.
It's very hard to reliably own something when you don't possess it. Which VPNs claim to own their hardware?
I do not know of anything for a VPN other then having a Multi Hop connection.
Other then that, the only thing I know that changes IPs randomly at around 10 minute intervals is Tor.
The only VPNs that I know, which should own their own hardware are smaller VPNs located and working in the same Geo Location...
If the are offering VPN servers around the world, then they are most likely hosting...
Sorry if I came across like this is 100% negative, having a host, it's just that this host should not be your typical hosting company, it needs to be more geared towards a security type of company that specializes in this type of thing, because if it's just your average hosting company, then this is where problems can arise...
What you're probably looking for is a basic proxy-switcher tool that uses anonymous HTTP proxies. If you use Firefox, I think there are at least a couple of different add-ons that will do exactly what you want--which is to change IP addresses at the click of a button. That's the easy part. The hard part is finding and maintaining a GOOD list of working proxy servers.
This is a complicated issue. Ideally, one could conceive of a VPN Provider that actually OWNS and operates the data center(s) that houses its servers... but I imagine this would be cost-prohibitive as it would require millions (?) of dollars in investment capital. Even then, they would not necessarily be impervious to all forms of adversaries... unless the location/jurisdiction is really fantastic. The other option is co-location, in which the VPN service operates on their own hardware. But this isn't really that much better than a 3rd party dedicated server. In either case (colo or dedicated), there's still a great dependence on the reliability/integrity of the hosting company.
The most promising hosting solutions for VPN operators are those which are offered by so-called "bulletproof" hosts. They don't necessarily have to specialize in catering to VPN services per se; they just need to be hardened enough to shrug off the usual threats such as DMCA notices and SPAM complaints... and perhaps even more serious threats like law enforcement raids. A great example of this kind of host would be Cyberbunker - the impenetrable nuclear bomb shelter in the Netherlands, and/or companies that host controversial sites such as TPB and WikiLeaks.
Well, yes they certainly don't have to specialize, but it certainly helps, because I didn't mean this as strictly an issue for law enforcement, but a hosting company that understands all of this from a VPN perspective making sure everything else is working as should be, or be a Cyberbunker then, hehe...
Portlane seems to be a good example of a Hosting company for VPN providers, needing a good host that seems to specialize in this type of thing, also they run their own VPN service too...
Yiiiiiii. 16 pages. A bit heavy going for this favor i've been asked
I've been asked to suggest a 'good VPN' service for a fellow who likes to post in political & current affairs forums and similar sort of stuff. I don't know much more than him about this stuff ( but i didn't tell him that). Cause you guys are going help me out.
The need seems simple but I've never been there except a few frustrating sessions with TOR(ture). Its too slow. And that's too is his quote and complaint. Primarily he doesn't want his forthright opinions traced back to him. Or maybe he wanted to join under multiple accts. I didn't ask.
So I guess he needs something inexpensive $5-$10 per month. A simple setup like a 'paid TOR' that hides his real i.p. from forum mods etc yet has similar speed to a normal browser.
What do you suggest?
(He has ADSL & XP)
I've seen six OpenVPN services discussed with substance in this and other recent Wilders threads. Each has its pros and its cons, its supporters and its critics.
In your price range are two 1-hop torrent focused services:
BolehVPN - 10USD/month
Mullvad - 5EUR/month
More expensive are four multihop services:
Cryptohippie - 275USD/year
Insorg - 20USD/month
iVPN - 20USD/month
XeroBank - 30USD/month
Have I missed any?
nVpn - $4/month
I have used Acevpn for a while, good service, reliable, and always answers questions quickly.
I wonder if anyone has asked them about logging etc?
I copied and pasted this from their website!
Question: Do you retain IP addresses or other session logs when using your service?
The logging gets activated only on certain abusive patterns like hacking, port scanning, spamming, etc. The logging is per user basis. This is only logged to track abusers and minimize further damage.
Question: Would it technically be possible to couple pay data together with user names or, if saved, session logs?
Technically anything is possible but we don’t do unless there is a reason like serious abuse. If any VPN provider is claiming they don’t, they wouldn’t be in business for long!!
What does it mean in real terms? Would I be better off with the likes of iVPN or one of the Swedish ones for logging policies?
On a separate note I tried Mullvad, with the config script editing as suggested here and I am still finding it very unstable with fluctuating speeds and random disconnects.
I do not know Acevpn. All VPN operators must sometimes receive threats that they cannot ignore (from their ISPs, authorities, people with guns, etc). They must at least eliminate offending traffic, and that requires logging to identify offenders. There is no way around that, and no honest operator can claim otherwise. If you hurt your provider, you will at least lose your account.
VPN operators see IP addresses of connecting clients. Once they have traced offending traffic, they know account information and source IP address. Even if that were not so, through some miracle of technology, assuming it is prudent.
If you really are that worried, you probably want to at least tunnel one multihop VPN through another, and avoid traceable connections to the inner one. Also, keep in mind that all low latency connections are vulnerable to traffic analysis.
Mullvad isn't free, except for trial. They probably try to dump freeloaders.
There's no legitimate reason for a VPN provider to log the incoming external IP address of the client in order to combat abuse. Even if they *do* keep connection logs, the only things they should be logging are the internally assigned IP addresses (such as 10.x.x.x), matched with the client's unique login/user ID. That way, the VPN provider can take the appropriate action against the account of the offending client without compromising that client's anonymity.
Honestly, this is all pretty basic authentication/networking-related stuff... no "miracle of technology" required. It all boils down to the business model of the VPN provider: Some of them offer legitimate privacy/anonymity services, while others (most of them, unfortunately) are just non-anonymous "IP changer" services.
Yes, we all want VPNs that do not log. Some claim that they do not. But maybe they are lying. How can we tell?
Having a "man on the inside" certainly helps, i.e., a trusted friend or associate who has specific technical knowledge of the VPN setup (Apache config files and such). Another way is to wait for some sort of major scandal to go down (such as a law enforcement raid) and see if any suspects turn up... or if the case goes cold.
If neither of these scenarios are applicable, the next best thing is to get to know the mindset of the people managing the VPN. Do they seem to have a vested interest in protecting the privacy and anonymity of their fellow man--including themselves--or are their motives purely profit-oriented? Even if it's not readily apparent, the answer to this question will often reveal itself over time. Spend some time on various VPN companies' user forums. Get to know the founders, ask a lot of questions, see how they react to various problems/situations, and so on.
As you say, you can't always be 100% sure who you're dealing with... but with some effort (and intuition) you can usually discern the "good" from the "bad" with a reasonable degree of confidence.
From Lance Cottrell's The Privacy Blog:
Right now I don't see anyone standing as tough as PRQ. What I mean, they were under heavy investigation and raided, yet they did not give into pressure, had nothing they could cough up and stood by their guns! This truly shows where this VPN stands;
Also WikLeaks either uses them now or used them in the past, these guys really attract the hard core that are looking for real security and privacy because they give it!
Also Swedish law does not require any logging.
So for security and privacy, for the price, you can't beat these guys!
same here. Not stable. perhaps it is not free in the first place.
May trial them soon
Nice one. Don't see a "BUY" button on their webby.
except to contact them for ordering
From the HideMyAss! Blog:
I'd like to hear how you accomplished this, if you're still around. I was using the iVPN client, and choose auto-login during install, so it created that pass.txt file for me.
Now I'm using the OpenVPN client. I have to agree this thing seems a bit more stable & snappier. Certainly more convenient too for testing out multiple VPN's. I thought all I had to do was create a .txt file with my username on line 1, and password on line 2, but it doesn't seem to be working. And when I try to change my password in the GUI it gives me an error message.
Exactly what did you modify in the config file to get it working? And how did you make that password text file?
I'd be much obliged. You can PM me if you'd like.
You create "ivpn-user-pass" file as described (username on 1st line, password on 2nd) and put it in openvpn folder (/etc/openvpn/ for Ubuntu). Then edit auth-user-pass line in openvpn config script as follows:
Separate names with a comma.