How to build your own VPN if you’re (rightfully) wary of commercial options

Discussion in 'privacy technology' started by Minimalist, May 26, 2017.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    https://arstechnica.com/gadgets/201...-youre-rightfully-wary-of-commercial-options/
     
  2. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    2,499
    Wow!!!! that looks like a lot of work.:eek:
     
  3. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
  4. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,390
  5. Stefan Froberg

    Stefan Froberg Registered Member

    Joined:
    Jul 30, 2014
    Posts:
    747
    Hmmmm.... why it says there "Does not install Tor, OpenVPN, or other risky servers" ?
    What's risky about OpenVPN ?
    (note: I have absolutely no clue about ipsec)
     
  6. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
  7. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,832
    Location:
    UK
    Do you happen to know where the certs are generated for the server in Streisand? Is it on your local machine before the deployment to the remote server? Just thinking about entropy for the generation of the certs, and having a bit more control of them.

    Presumably one has to trust the hosting provider not to do memory scans of its VMs, or are there any mechanisms for encrypting the certs while not in use in memory?
     
  8. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
    It does that on the remote server, it seems.
    https://github.com/jlund/streisand/blob/master/playbooks/roles/openvpn/tasks/main.yml
    I don't think so.

    This isn't a high-security setup, for sure. It's just for people who want a private VPN, but don't know how to do it.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.