Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




Mr Snotty
8909 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

# 259814 23-Oct-2019 12:46
2 people support this post
Send private message quote this post

Interesting read: https://gist.github.com/joepie91/5a9909939e6ce7d09e29

 

I have been saying it for years now - a VPN service actually doesn't offer you any privacy advantages especially here in NZ.

 

Unless if you're connecting to the internet via a insecure WiFi network or are needing to break past restrictions on a network - there is no need to VPN all your traffic.





View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
2149 posts

Uber Geek

Trusted

  # 2342448 23-Oct-2019 13:22
One person supports this post
Send private message quote this post

Fully agree with the post.

 

The one reason I paid a one-off fee for a cheap "lifetime" VPN service is to drop out particular connections in various countries.  It's all done via a firewall and I only route particular source clients to specific destination address(es) over it.  No way I'm sending it all.

 

The idea of sending all your traffic to some random muppet who knows how to run OpenVPN is insane, but VPNs have done an amazing job of marketing to people that this is something they need.

 

When people spend money on something, they'll defend and even promote that decision (see the second paragraph of this post* for a prime example), and so many people have bought them that it's almost self-fulfilling now.

 

 

 

*Yes, this is the correct link.


5196 posts

Uber Geek

Trusted
Microsoft

  # 2342452 23-Oct-2019 13:28
2 people support this post
Send private message quote this post

Sweeping generalizations are sweeping

I’m sure freedom fighters in China love to use VPNs to protect their privacy and hide from the CCPs surveillance tentacles

Not all VPN providers are created equally, and big name ones who spend lots on marketing, take months and months to acknowledge a security vulnerability, provide no proof they don’t log, and choose to locate their businesses in offshore tax havens, are probably not the best choice.

 
 
 
 


367 posts

Ultimate Geek


  # 2342466 23-Oct-2019 14:10
2 people support this post
Send private message quote this post

I think it is more to the point that you should place no faith in VPNs as a silver bullet for online privacy as is Tor etc

 

As is said many times, it depends on your personal threat model. Nobody is after me (well that I know of....) so using a VPN for my personal traffic is largely pointless; the people interested in my traffic (ads, targeted marketing etc) are willingly to throw more resources into identifying and analysing it than I am willing to use hiding it, because at the end of the day, it isn't a clear and present threat to my personal safety.

 

I feel like the general majority also fit in that category, thus the questioned worth of VPN services for the masses. Which is why they spend money marketing to people's paranoia.

 

Now if you were the aforementioned Chinese freedom fighters, you DEFINITELY have a clear and present threat to your safety as that Government has made clear. In which case a robust VPN along with other security measures is probably in your best interests. Which I would suspect won't be any of the big off-the-shelf names, but roll-your-own.

 

 

 

 

 

Click to see full size

 

Hmmm....


4235 posts

Uber Geek


  # 2342473 23-Oct-2019 14:27
One person supports this post
Send private message quote this post

I've never understood the need for a 'VPN service'. The only reason to use one in NZ is for nefarious purposes - hell I know I have used the free options every now and again when logging in to a portal I didn't want to see my IP address haha.

 

These days with things like the Unifi USG it's very easy to set up a VPN server at home, and with our world leading UFB networks would probably perform better than these "VPNaaS" providers.

 

Edit:

 

connecting to the internet via a insecure WiFi network

 

Is this a realistic issue these days though? Assuming the WiFi network is set up well (yes realise plenty of them aren't), there should be guest isolation so others can't just simply snoop traffic anymore. And even if there isn't isolation, all the "important" sites are HTTPS anyway so no way to decrypt that without doing a MITM attack and trigger all the browsers errors. So that just leaves HTTP captive portal pages that want your credit card to connect to the network - of which normal rules apply of don't enter important stuff in to non-HTTPS pages.


defiant
1034 posts

Uber Geek

Lifetime subscriber

  # 2342494 23-Oct-2019 15:33
One person supports this post
Send private message quote this post

Only thing I use VPN's for is 1) To get around geolocation on some sites, although this is becoming less necessary these days (especially on Crunchyroll) and 2) When I'm on a guest wifi, but I VPN to my home network as opposed to external provider


Lock him up!
10795 posts

Uber Geek

Lifetime subscriber

  # 2342508 23-Oct-2019 16:06
Send private message quote this post

I have Windscribe because I was able to get a good deal on a lifetime subscription. I find it useful for specific purposes, such as verifying issues with my DNS proxy and quickly bypassing geoblocks when checking new sites. I use the browser extension only, so I can quickly switch it on and off. I never use it more than briefly. It is a handy tool, not a way of life.

 

 





I don't think there is ever a bad time to talk about how absurd war is, how old men make decisions and young people die. - George Clooney
 


794 posts

Ultimate Geek


  # 2342511 23-Oct-2019 16:09
One person supports this post
Send private message quote this post

Intended or not, the headline is misleading and should say "VPN services" or "commercial VPN".





- ISP1: T-OneBox FTTH modem, 1/.5G, full DS, VLAN7, VoIP + ipTV streaming flat

 

- ISP2: 4G/LTE USB modem + TL-MR3020, 100/40M data plan (wireless fallback)

 

- NET: ZBOX nano router, 2 C2960X-48TS-L, 2 GWN7630, GWN7610, EL1600usb

 

- SVR: E3C236 32G/20TB, 2 H2 16G/500GB, HC2 4TB, 2 C2 1TB | 2 HC2 14/1TB

 

- IoT+3D: LoRaWAN, 5G, CCU3 (openHAB/MQTT), 2 Ender-3, UM2E+, UM3, CNC

 

- USR: NUC8i7HVK, EliteBook 840, Aspire E5, N2, Galaxy Tab, mobiles, 2 4K TVs

 

- ipPBX: GRP2613, GO-Box 100, SPA112 (Fax and W-48, a 1948 Siemens phone)


 
 
 
 


297 posts

Ultimate Geek

Subscriber

  # 2342517 23-Oct-2019 16:27
Send private message quote this post

Especially if they can't even keep their certificate secure...

 

https://arstechnica.com/information-technology/2019/10/hackers-steal-secret-crypto-keys-for-nordvpn-heres-what-we-know-so-far/

 

Compromised master secrets, like those stolen from NordVPN, can be used to decrypt the window between key renegotiations and impersonate their service to others... I don't care what was leaked as much as the access that would have been required to reach it. We don't know what happened, what further access was gained, or what abuse may have occurred. There are many possibilities once you have access to these types of master secrets and root server access.


399 posts

Ultimate Geek


  # 2342531 23-Oct-2019 17:09
Send private message quote this post

was reading some where that some of the VPN are owned by shell companies of the chinese government

 

and i would never use one if you have to download software to use it

 

also all internet traffic is logged in some way

 

 


44 posts

Geek


  # 2342533 23-Oct-2019 17:22
One person supports this post
Send private message quote this post

ShinyChrome:

 

Click to see full size

 

Hmmm....

 

 

Click to see full size

 

Another one !


44 posts

Geek


  # 2342540 23-Oct-2019 17:33
One person supports this post
Send private message quote this post

The only reason I would use a VPN is to bypass certain blocks. I'd never use online banking on them though! If i was desperate i would just use my own data


311 posts

Ultimate Geek


  # 2342663 23-Oct-2019 20:57
Send private message quote this post

The link is mostly right but not quite. If you want to do some illegal activity in the internet, yeah, a VPN probably won't be enough. If you just want to engage in legal activities privately do use a VPN. TLS is not enough as your ISP/employer/flatmate can still find a lot about your internet usage habits.


13423 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2342711 23-Oct-2019 22:12
Send private message quote this post

I think I'd prefer encrypted voice comms.







Mr Snotty
8909 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 2346131 30-Oct-2019 01:24
2 people support this post
Send private message quote this post

Great video:

 

Notes from this video:
1) Your ISP here in NZ doesn't give a damn about what domains you hit. They also don't sell your DNS logs if they even log this at all.
2) Yes, your ISP does log things such as your IP address assigned to your account, authentication requests, traffic transferred etc. But this is for them, and used to support you.

 

The biggest factor of privacy leaks inside a network is using a third party DNS service - examples like Google DNS and OpenDNS as examples do log traffic. Others like Cloudflare DNS, Quad9 state they don't and are committed on privacy but to be perfectly honest I trust my ISP more than any of these providers. We've got it pretty good in NZ.

 

Edit: Thought I'd mention I do have a NordVPN subscription I use rather rarely. I'd still NEVER do anything like Internet Banking or anything sensitive over it.





BTR

1522 posts

Uber Geek


  # 2346171 30-Oct-2019 09:44
Send private message quote this post

I watched Tom Scotts video last night, he makes some really good content that is unique and very interesting. His VPN video is very tongue and cheek and was very funny. 


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Microsoft launches first Experience Center worldwide for Asia Pacific in Singapore
Posted 13-Nov-2019 13:08


Disney+ comes to LG Smart TVs
Posted 13-Nov-2019 12:55


Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19


Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48


CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42


Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41


Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30


BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14


Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24


2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35


New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13


OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32


Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27


D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07


LG Electronics begins distributing the G8X THINQ
Posted 24-Oct-2019 10:58



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.