Most VPN Services are Terrible

Discussion in 'privacy technology' started by BoerenkoolMetWorst, Aug 20, 2016.

  1. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,764
    Location:
    Outer space
  2. Oleg

    Oleg Registered Member

    Joined:
    Mar 24, 2005
    Posts:
    404
    Location:
    USA
    %100 agree with you. I have tired many VPN services that are claiming there are no limitations. What kind lie is it?.
     
  3. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    Well which ones are good? And if you really know.
     
  4. Oleg

    Oleg Registered Member

    Joined:
    Mar 24, 2005
    Posts:
    404
    Location:
    USA
    NONE. :shifty:
     
  5. NWOAbschaum

    NWOAbschaum Registered Member

    Joined:
    Feb 9, 2014
    Posts:
    184
    Location:
    Germany
    perfect-privacy vpn.
     
  6. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    It's leak-free in Windows, but in OSX leaks IPv4 while reconnecting after uplink interruption.

    I do like the option in their client of cascading/chaining multiple servers. Multi-hop à la carte.
     
  7. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    720
    @mirimir : I think nobody knows more about this stuff than you. :thumb: So what's your general opinion? What do you say about PacketSmuggler's comment?
     
  8. liba

    liba Registered Member

    Joined:
    Jan 21, 2016
    Posts:
    76
  9. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    CryptoStorm leaks both IPv4 and IPv6, in both Windows and OSX.

    But I do like their setup for buying access.
     
  10. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    The tl;dr:
    I agree somewhat, but it's not that simple.
    1. I never use any of my meatspace email addresses. Often I use https:/anonbox.net/
    2. I always use Bitcoin, anonymized appropriately.
    3. I use stock OpenVPN daemon in Linux, or pfSense VMs. I tested binary installers in Windows and OSX, where available, because that's what naive users typically do. It does seem that some providers are abusing root rights to monitor user activity. That is totally unacceptable, and providers doing that need to be named and shamed.
     
  11. compleo

    compleo Registered Member

    Joined:
    May 3, 2016
    Posts:
    46
    I just tried it,it reveals the header(raw data).Unless i'm doing something wrong?
     
  12. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    It's not secure, I admit :(

    But it is quick and easy :)

    Is there better disposable email?
     
  13. compleo

    compleo Registered Member

    Joined:
    May 3, 2016
    Posts:
    46
    I never used a DE before so can't personally vouch for 1,maybe someone else can chime in.
     
  14. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    So...AirVPN is bad now? I ask because it's not mentioned. Is it covered under the blanket statement that most vpns are bad. How is cryptostorm different?

    thx.
     
    Last edited: Aug 22, 2016
  15. Oleg

    Oleg Registered Member

    Joined:
    Mar 24, 2005
    Posts:
    404
    Location:
    USA
    As i understand VPNs are not met for need for Speed.
     
  16. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,764
    Location:
    Outer space
    No. This is about VPN Providers having a one public "Secret Key" for all users for L2TP/IPsec VPNs. L2TP/IPsec is still considered reasonably secure for normal use, but if the secret key is not secret, it is basically as insecure as plain text.
    VPN providers not mentioned are either not tested or don't offer L2TP/IPsec VPNs. I think AirVPN only offers OpenVPN, but I could be wrong.

    Of course it is true that it only affects the L2TP/IPsec VPNs so OpenVPN from the mentioned providers is theoretically still secure. On the other hand, one should wonder if their (in)competence can be trusted..
     
  17. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    The key point of the site that OP linked is that most VPNs implement IPSec with insecure pre-shared keys. That's irrelevant for me, because I always use OpenVPN.

    AirVPN is one of the best VPNs, I think. Their Windows client didn't leak at all. But their OSX client does need some work ;)
     
  18. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown

    Ok. Thank you for that clarification mirimir. That helps. Also, have you been able to test AirVPN's Eddie experimental version? It has a new way of blocking on drop that I'm interested in having tested.
     
  19. Holysmoke

    Holysmoke Registered Member

    Joined:
    Jun 29, 2014
    Posts:
    111
    does doublehop.me leak?
     
  20. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,024
    I used v2.10 in both Windows and OSX. Please post a link to Eddie.
     
  21. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    Here you go.
     
  22. Anonfame1

    Anonfame1 Registered Member

    Joined:
    May 25, 2016
    Posts:
    193
    Ive used Eddie before on Linux and it was solid- wireshark showed no leakage whatsoever (it uses IPtables rules to ensure no leaks) even when I tried to instigate leaks.

    However, because I hate having the eddie client open and running, I just use openvpn and network manager (and have firewall rules to gaurantee no leakage). I manually input all the servers I care about, and then have eddie just in case. Eddie is nice if you need to do ssh or ssl tunneling (to obscure vpn usage, at least temporarily).

    Ive had great luck with AirVPN in terms of speed and stability, but I might switch to NordVPN next time I need to renew my VPN (NordVPN is based in Panama which is preferable to AirVPN's Italy... I think. How important the established home of the VPN isnt completely clear versus the location of the exit server being used). Ive also considered iVPN... Edit: crap, scratch NordVPN based on that article...
     
  23. M3gatron

    M3gatron Registered Member

    Joined:
    Oct 3, 2016
    Posts:
    22
    Location:
    Galaxy far far away!
    I use nordvpn with openvpn client. So far I had good experience with it and it also provides TOR integration
     
  24. liba

    liba Registered Member

    Joined:
    Jan 21, 2016
    Posts:
    76
    Perfect privacy = No log (proofed server seized no logs)

    Airvpn = Not 100% sure about no log
     
  25. DesuMaiden

    DesuMaiden Registered Member

    Joined:
    Jan 25, 2013
    Posts:
    534
    I think most VPNs keep logs of their users. When I'm talking about logs, I'm talking about ip logs. So in other words, if the police were to ask the VPN provider the ip logs (or the ip address) of someone suspected of illegal activities, the VPN provider would be insane to not provide the cops the ip logs. The cops will sooner or later get the ip logs of the person doing the illegal activities.

    Remember, everything on the Internet is traceable, and there is no such thing as 100% anonymity online. The best you can do is get partial anonymity online, so that Big Brother doesn't constantly know everything you are doing.
     
Loading...