This article is about rescinding a set of rules that hasn't even taken effect yet. Almost nothing will have changed as a matter of practice. Some fence sitting providers may decide it's okay to sell your information now, and it may be harder to get these rules in place in the future.
I'm looking to drop a pfsense router in front of my network so I don't have to deal with VPN on a per-device level. Other than that, selecting a top tier VPN is also on my to-do list. HN recommendations for VPNs would be helpful here!
Private Internet Access is supposed to be one of the better ones that doesn't save logs. I've had it on a machine for months and it hasn't ever disconnected. YMMV.
I spent a lot of time researching VPNs and trying to find one I felt like I could trust. Unfortunately, if you're being truly paranoid (which I feel everyone whose considering a VPN should be) there's nobody out there you can trust.
If you feel you can trust a datacenter, the most trustworthy approach would be running your own OpenVPN instance in another country.
Although if you don't want to go through the hassle and do decide to put some amount of trust in a VPN service, I have found That One Privacy Site [0] to be a great resource for researching VPNs.
Anyone have any experience with flashrouters - https://www.flashrouters.com? While I think you still need a VPN like PIA, IPVanish, ExpressVPN etc, it appears they offer help with device by device VPN connectivity and some plug and play pre-configuration for VPN router?
I recently purchased a subscription to NordVPN in light of this new legislation. They claim not to keep any logs, and I've found their servers to be quick with low latency. A speed-test right now shows 41mb/sec down and 15ms ping. They also don't throttle specific kinds of traffic, like torrents.
Per their own privacy policy available here[1], they mention the following
> Internet Protocol (IP) Addresses
> DigitalFyre uses your unique network address and SessionID
> to help diagnose potential problems with equipment, to help
> tailor content to match your preferred interests and to
> otherwise administer the Site.
So while NordVPN (and frankly, any VPN service that colocates or rents servers) may claim not to keep logs, their service provider most certainly does. Even though your ingress traffic is encrypted, it would still be trivial to match it to egress flows based off packet counts, sizes, and flow durations.
"6. Yes, we allow P2P traffic. We have optimized a number of our servers specifically for file-sharing; ensuring other servers, which are meant for streaming and other purposes, have uninterrupted speeds. In any case, we do not engage in bandwidth throttling for P2P users."
My privacy setup for a while (which I have relaxed somewhat) included:
- Ubuntu on my desktop and laptop
- CyanogenMod on Android [0]
- VPN to a non-14 eyes country [1]
- uBlock Origin, PrivacyBadger, Disconnect
- Null-routed most CDNs (e.g. Google APIs)
- Gaff tape over device's cameras if I couldn't physically disable them
Now obviously those measures go far beyond protecting you from just ISPs, but it was designed to take into consideration every method ISPs, big tech (Google, Facebook), and governments could track you.
Doesn't null routing CDNs cause problems? It would make more sense to run your own caching proxy so you rarely make the request to the CDNs and they can't track you. Although doesn't your browser do that already? It's not like you request jquery on every page linking to it via google cdn. You only do it once and then it's cached.
sidlls|9 years ago
covercash|9 years ago
equalarrow|9 years ago
notwhoyouthink|9 years ago
If you feel you can trust a datacenter, the most trustworthy approach would be running your own OpenVPN instance in another country.
Although if you don't want to go through the hassle and do decide to put some amount of trust in a VPN service, I have found That One Privacy Site [0] to be a great resource for researching VPNs.
[0] https://thatoneprivacysite.net/vpn-section/
whitepoplar|9 years ago
safetyfirst080|9 years ago
hellcow|9 years ago
No affiliation, just a happy customer.
RKearney|9 years ago
Picking a US server at random, (US20) it seems to be hosted here[0]
In what appears to be their NJ datacenter located at:
DuPont Fabros, 101 Possumtown Road, Piscataway, NJ 08854
Per their own privacy policy available here[1], they mention the following
So while NordVPN (and frankly, any VPN service that colocates or rents servers) may claim not to keep logs, their service provider most certainly does. Even though your ingress traffic is encrypted, it would still be trivial to match it to egress flows based off packet counts, sizes, and flow durations.covercash|9 years ago
- https://torrentfreak.com/vpn-services-anonymous-review-2017-...
notwhoyouthink|9 years ago
- Ubuntu on my desktop and laptop
- CyanogenMod on Android [0]
- VPN to a non-14 eyes country [1]
- uBlock Origin, PrivacyBadger, Disconnect
- Null-routed most CDNs (e.g. Google APIs)
- Gaff tape over device's cameras if I couldn't physically disable them
Now obviously those measures go far beyond protecting you from just ISPs, but it was designed to take into consideration every method ISPs, big tech (Google, Facebook), and governments could track you.
[0] https://en.wikipedia.org/wiki/CyanogenMod [1] https://en.wikipedia.org/wiki/UKUSA_Agreement
chatmasta|9 years ago