Mullvad VPN4d ago

Some politicians in the UK think it is a good idea to introduce identity verification for using VPN services.

It could be that these politicians do not understand what they are proposing. The alternative, that they do understand, would be even worse.

1/2

Show threadMullvad VPN4d ago

Whistleblowers, activists, and journalists depend on anonymous VPN services. Requiring identity verification for VPN services would put them at risk. It would also have a chilling effect on online debate (VPNs can help people post anonymously on social media).

In authoritarian countries, VPN services are crucial forcriticizing the government. That is precisely why such governments seek to ban or restrict them. Hopefully, the UK will not join that list.

2/2

Show threadNetzblockierer4d ago

@mullvadnet personally, I'd recommend @torproject instead of a VPN simply because even Mullvad will comply with an orderly issue warrant.

  • And I don't expect your staff to risk dying of old age in jail…

https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968

The only thing that VPNs are good for is circumventing Geoblocking and Providers violating Net Neutrality.

  • But if you are targeted by state-sponsored attackers, espechally the UK government, a VPN is clearly insifficient
    • But those OpSec, InfoSec, ComSec & ITsec issues are way beyond the scope of this post

Case in point: If you want to watch i.e. @dw_innovation / DW news then a VPN is propably the only option if you can't get the livestream working.

  • But in terms of privacy, I'd rather recommend Tor.
    • Still I have to give you guys cudos for your OnionService and pro-privacy setup, and I think that Tor over VPN is a valid strategy on the go…

#VPN #Tor #privacy #InfoSec #OpSec #ComSec #ITsec #security #VPNs #Mullvad #Tor #DW #DeutscheWelle #DWnews #OnionService

thaddeus e. grugq on Twitter

“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”

Twitter
Show threadWe Must Dissent4d ago
@Netzblockierer
Mulvad gets pretty secure if you are paying in cash or crypto but you're right on that VPN isn't something you should use if your threat model includes state actors.
@mullvadnet @torproject @dw_innovation
Show threadOkuna4d ago
@MxSpoon @Netzblockierer @mullvadnet @torproject @dw_innovation they know your regular IP and with this you can be identified
Show threadNetzblockierer3d ago

@Okuna @MxSpoon @mullvadnet @torproject @dw_innovation if you use a VPN directly, yes.

  • OFC the old darkweb wisdom applies here, too:

Don't shit where you eat/sleep !

Show threadOkuna
@Netzblockierer @MxSpoon @mullvadnet @torproject @dw_innovation how do you use a VPN indirectly?
Jun 7 at 9:26amWeb
Show threadNetzblockierer3d ago

@Okuna @MxSpoon @mullvadnet @torproject @dw_innovation get #Freifunk, or better yet go somewhere as a public WiFi w/o registration and obfuscate your MAC so that worst-case there's nothing to point at you.

  • If you're extra clever, you can even plant some thingy in reach to act as a tunneling device to Reverse-SSH into!
    • Pretty shure that once investigators get a MAC for a Dreamcast or GameCube they gonna realize they won't find anything and move on.

#NotLegalAdvice #MAC #WiFi #PublicWiFi #Freifunk #Privacy #SSHtunneling #ReverseSSH #ITsec #ComSec #InfoSec #OpSec