Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




/dev/null
9032 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

# 259814 23-Oct-2019 12:46
2 people support this post
Send private message

Interesting read: https://gist.github.com/joepie91/5a9909939e6ce7d09e29

 

I have been saying it for years now - a VPN service actually doesn't offer you any privacy advantages especially here in NZ.

 

Unless if you're connecting to the internet via a insecure WiFi network or are needing to break past restrictions on a network - there is no need to VPN all your traffic.





View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
2184 posts

Uber Geek

Trusted

  # 2342448 23-Oct-2019 13:22
One person supports this post
Send private message

Fully agree with the post.

 

The one reason I paid a one-off fee for a cheap "lifetime" VPN service is to drop out particular connections in various countries.  It's all done via a firewall and I only route particular source clients to specific destination address(es) over it.  No way I'm sending it all.

 

The idea of sending all your traffic to some random muppet who knows how to run OpenVPN is insane, but VPNs have done an amazing job of marketing to people that this is something they need.

 

When people spend money on something, they'll defend and even promote that decision (see the second paragraph of this post* for a prime example), and so many people have bought them that it's almost self-fulfilling now.

 

 

 

*Yes, this is the correct link.


5262 posts

Uber Geek

Trusted
Microsoft

  # 2342452 23-Oct-2019 13:28
2 people support this post
Send private message

Sweeping generalizations are sweeping

I’m sure freedom fighters in China love to use VPNs to protect their privacy and hide from the CCPs surveillance tentacles

Not all VPN providers are created equally, and big name ones who spend lots on marketing, take months and months to acknowledge a security vulnerability, provide no proof they don’t log, and choose to locate their businesses in offshore tax havens, are probably not the best choice.

 
 
 
 


570 posts

Ultimate Geek

Subscriber

  # 2342466 23-Oct-2019 14:10
2 people support this post
Send private message

I think it is more to the point that you should place no faith in VPNs as a silver bullet for online privacy as is Tor etc

 

As is said many times, it depends on your personal threat model. Nobody is after me (well that I know of....) so using a VPN for my personal traffic is largely pointless; the people interested in my traffic (ads, targeted marketing etc) are willingly to throw more resources into identifying and analysing it than I am willing to use hiding it, because at the end of the day, it isn't a clear and present threat to my personal safety.

 

I feel like the general majority also fit in that category, thus the questioned worth of VPN services for the masses. Which is why they spend money marketing to people's paranoia.

 

Now if you were the aforementioned Chinese freedom fighters, you DEFINITELY have a clear and present threat to your safety as that Government has made clear. In which case a robust VPN along with other security measures is probably in your best interests. Which I would suspect won't be any of the big off-the-shelf names, but roll-your-own.

 

 

 

 

 

Click to see full size

 

Hmmm....


4333 posts

Uber Geek


  # 2342473 23-Oct-2019 14:27
One person supports this post
Send private message

I've never understood the need for a 'VPN service'. The only reason to use one in NZ is for nefarious purposes - hell I know I have used the free options every now and again when logging in to a portal I didn't want to see my IP address haha.

 

These days with things like the Unifi USG it's very easy to set up a VPN server at home, and with our world leading UFB networks would probably perform better than these "VPNaaS" providers.

 

Edit:

 

connecting to the internet via a insecure WiFi network

 

Is this a realistic issue these days though? Assuming the WiFi network is set up well (yes realise plenty of them aren't), there should be guest isolation so others can't just simply snoop traffic anymore. And even if there isn't isolation, all the "important" sites are HTTPS anyway so no way to decrypt that without doing a MITM attack and trigger all the browsers errors. So that just leaves HTTP captive portal pages that want your credit card to connect to the network - of which normal rules apply of don't enter important stuff in to non-HTTPS pages.


defiant
1074 posts

Uber Geek

Lifetime subscriber

  # 2342494 23-Oct-2019 15:33
One person supports this post
Send private message

Only thing I use VPN's for is 1) To get around geolocation on some sites, although this is becoming less necessary these days (especially on Crunchyroll) and 2) When I'm on a guest wifi, but I VPN to my home network as opposed to external provider


Lock him up!
11220 posts

Uber Geek

Lifetime subscriber

  # 2342508 23-Oct-2019 16:06
Send private message

I have Windscribe because I was able to get a good deal on a lifetime subscription. I find it useful for specific purposes, such as verifying issues with my DNS proxy and quickly bypassing geoblocks when checking new sites. I use the browser extension only, so I can quickly switch it on and off. I never use it more than briefly. It is a handy tool, not a way of life.

 

 





I don't think there is ever a bad time to talk about how absurd war is, how old men make decisions and young people die. - George Clooney
 


820 posts

Ultimate Geek


  # 2342511 23-Oct-2019 16:09
One person supports this post
Send private message

Intended or not, the headline is misleading and should say "VPN services" or "commercial VPN".





- ISP1: T-OneBox FTTH modem, 1/.5G, full DS, VLAN7, VoIP + ipTV streaming flat

 

- ISP2: 4G/LTE USB modem + TL-MR3020, 100/40M data plan (wireless fallback)

 

- NET: ZBOX nano router, 2 C2960X-48TS-L, 2 GWN7630, 1 GWN7610, 2 UPS

 

- SVR: E3C236 32G/20T, 2 H2 16G/500G, HC1 5T, N2 128G | HC2 14T, HC2 1T

 

- USR: DeskMini 310, NUC8i7HVK, Aspire E5, EliteBook 840, Galaxy Tab, 4K TV

 

- IoT: 3 public/1 private LoRaWAN gateways, various openHAB bindings (CCU3)

 

- 3D: Ender-3, Ender-3 Pro, Ultimaker 2E+, Ultimaker 3, Ultimaker S5, MP-CNC

 

- ipPBX: GRP2613, GO-Box 100, SPA112 (Fax and W-48, a 1948 Siemens phone)


 
 
 
 


304 posts

Ultimate Geek

Subscriber

  # 2342517 23-Oct-2019 16:27
Send private message

Especially if they can't even keep their certificate secure...

 

https://arstechnica.com/information-technology/2019/10/hackers-steal-secret-crypto-keys-for-nordvpn-heres-what-we-know-so-far/

 

Compromised master secrets, like those stolen from NordVPN, can be used to decrypt the window between key renegotiations and impersonate their service to others... I don't care what was leaked as much as the access that would have been required to reach it. We don't know what happened, what further access was gained, or what abuse may have occurred. There are many possibilities once you have access to these types of master secrets and root server access.


417 posts

Ultimate Geek


  # 2342531 23-Oct-2019 17:09
Send private message

was reading some where that some of the VPN are owned by shell companies of the chinese government

 

and i would never use one if you have to download software to use it

 

also all internet traffic is logged in some way

 

 


90 posts

Master Geek


  # 2342533 23-Oct-2019 17:22
One person supports this post
Send private message

ShinyChrome:

 

Click to see full size

 

Hmmm....

 

 

Click to see full size

 

Another one !


90 posts

Master Geek


  # 2342540 23-Oct-2019 17:33
One person supports this post
Send private message

The only reason I would use a VPN is to bypass certain blocks. I'd never use online banking on them though! If i was desperate i would just use my own data


317 posts

Ultimate Geek


  # 2342663 23-Oct-2019 20:57
Send private message

The link is mostly right but not quite. If you want to do some illegal activity in the internet, yeah, a VPN probably won't be enough. If you just want to engage in legal activities privately do use a VPN. TLS is not enough as your ISP/employer/flatmate can still find a lot about your internet usage habits.


13771 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2342711 23-Oct-2019 22:12
Send private message

I think I'd prefer encrypted voice comms.







/dev/null
9032 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 2346131 30-Oct-2019 01:24
2 people support this post
Send private message

Great video:

 

Notes from this video:
1) Your ISP here in NZ doesn't give a damn about what domains you hit. They also don't sell your DNS logs if they even log this at all.
2) Yes, your ISP does log things such as your IP address assigned to your account, authentication requests, traffic transferred etc. But this is for them, and used to support you.

 

The biggest factor of privacy leaks inside a network is using a third party DNS service - examples like Google DNS and OpenDNS as examples do log traffic. Others like Cloudflare DNS, Quad9 state they don't and are committed on privacy but to be perfectly honest I trust my ISP more than any of these providers. We've got it pretty good in NZ.

 

Edit: Thought I'd mention I do have a NordVPN subscription I use rather rarely. I'd still NEVER do anything like Internet Banking or anything sensitive over it.





BTR

1522 posts

Uber Geek


  # 2346171 30-Oct-2019 09:44
Send private message

I watched Tom Scotts video last night, he makes some really good content that is unique and very interesting. His VPN video is very tongue and cheek and was very funny. 


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43


Suunto 7 combine sports and smart features on new smartwatch generation
Posted 7-Jan-2020 16:06


Intel brings innovation with technology spanning the cloud, network, edge and PC
Posted 7-Jan-2020 15:54


AMD announces high performance desktop and ultrathin laptop processors
Posted 7-Jan-2020 15:42


AMD unveils four new desktop and mobile GPUs including AMD Radeon RX 5600
Posted 7-Jan-2020 15:32


Consolidation in video streaming market with Spark selling Lightbox to Sky
Posted 19-Dec-2019 09:09



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.