Mastodawn

Everyone loves Mullvad until they try to use it on a locked-down university network and the DPI firewall drops their packets instantly lmao.

Traditional protocols are dead for censorship evasion. XTLS/Reality is the way to go.

Setup your own 3x-ui panel, or if you don't wanna bother with updating cores, use the node I spun up: https://celestride.pro

#cybersecurity #linux #privacy #infosec #vless

Celestride Net

Simple, transparent, and logless VLESS proxy access.

gigigi11 8h ago

EU ISPs logging connection metadata is getting out of hand. Even if you use a "no-logs" VPN, your ISP still logs a persistent 24/7 connection to a known datacenter IP.

That's exactly why TLS mimicry is the only way forward. Hide the VPN handshake inside normal HTTPS traffic.

Built Celestride (https://celestride.pro) for exactly this. No passwords, RAM-only nodes, bypasses ISP snooping completely.

#infosec #VPN #privacy #cybersecurity #linux

Celestride Net

Simple, transparent, and logless VLESS proxy access.

gigigi11 16h ago

The cat-and-mouse game of censorship has evolved. Deep Packet Inspection (DPI) no longer relies purely on static signatures—firewalls now use Machine Learning to analyze packet size, timing, and entropy to fingerprint traditional VPNs like WireGuard and OpenVPN.
To survive, traffic must look like standard HTTPS via TLS mimicry (VLESS-Reality).
I wrote a deep dive on how this works and why I built a zero-log, passwordless service to solve it:
https://celestride.pro
#infosec #privacy #vpn

Celestride Net

Simple, transparent, and logless VLESS proxy access.