VPN

Thanks for the good advice from all the answers regarding the use of VPN. I do not think I need it, it was free with proton mail.

I agree that htpps should be good enough doing transcactions online and I go a step further sometimes and check the website certificate is valid and up to date. The servers that VPN uses are an unknown and a possible security risk, especially the free ones, and it does slow down the speed.

At least mine did work, I see many have issues with the hub3 and vpn.I have left it on my laptop but propably rarely need the vpn unless I need one for any reason.

alf28

VPN- SHOULD I USE ONE.

Thanks for the replies/answers.

I agree that using a VPN probably does leave some records. I think VPN's are encrypted but still use unknown severs in UK , USA  or other countries.

I often get blocked if I use a VPN, some websites will not connect or require security checks, as the VPN -IP address may have been abused by others so have to switch off the VPN in order to connect to the website.

The only advantage is that it is supposed to be a more secure method of connection by creating a tunnel and shields your own IP address so you are anonymous, even from your ISP.

Some may use VPN for other reasons for streaming or hiding their location or just protecting their computers while browsing or protection generally.

I rarely switch mine on for known websites, unless I am browsing generally, and clicking on searches or using unknown websites or you wish to remain private, but may help to provide some protection. All websites will log your IP address, it can be then used to communicate with your computers etc. and hackers can use IP addresses so they are best kept private. I do not need a VPN most of the time, and still unsure when to use one, and why they are often blocked by websites with a warning of unusual traffic.

The increasing TV adverts tell use to use a VPN for privacy and to protect bank details etc from being stolen., but I am not convinced I need one all the time, and do not use one for banking, shopping online etc. and preume the virgin broadband/ISP is secure and does not need a VPN.

alf28

MY free VPN- unexpected expiry

My free vpn just expired, so I will remove it now, not sure why it has done this after using it for months, requires a log in to renew it.

The Ip addresses used by my vpn are often blacklisted, and used for spam and hacking and using unknown servers in many countries, so not sure how they can be secure?

alf28

I went a bit mad on spam a few years back, where I mined data to find out where the servers were.  I posted a lot my findings on here at the time.  It was also quite exciting as I was learning as I went, and it was something I hadn't remotely considered doing before.  What I found out was how easy it was for spammers to chop and change poorly configured severs around the world.  VPN's make it easier still for them.

Like VPN's, they were dotted around world and spammers could quite easily change the servers used to ones in other countries.  So you have exactly the same setup as you do with VPN's.  If you're mirroring spammers (behaviour) by using them, why would you have a need to do that?  Yes, VPN's aren't illegal, but spamming is.  Your ISP doesn't know because you're not connecting to their servers.  So in our case VM IS NOT RESPONSIBLE in any way shape or form if you are arrested for dodgy activity by foreign authorities if dodgy activity on the "VPN" server is being carried out.  Another thing is that if VPN's are so great, why doesn't VM offer them as a service?  If there were a business/security case, they would.

This thread exposes them for what they are.

I think people need to take a step back and understand the what the terms private and public mean in a networking sense.

A public network is a network that anyone is allowed access to.
A private network is a network that has access limited to specific users or groups of users.

It's never about how visible the data is.  In fact some VPN's use GRE tunnels which have no encryption on them at all.  Nor is it really about the IP addresses used.  RFC1918 and NAT were bought in to make a specific set of IP addresses available to all private networks in order to deal with the recognised shortfall in IPv4 addresses.

If you look at Windows Firewall you'll see it has a 3 different sets of rules

Domain - rules for computers using the same domain
Private - rules for computers on private networks
Public - rules for computers on public networks

The former two are less restrictive, for example File and Printer Sharing is enabled for private networks but disabled for public one's.  Windows defaults to seeing a network as a public network until you specifically tell it that the network you are on is a private one.

However the idea of VPN's is to allow you to extend YOUR private network across the internet.  Thus I set up a VPN server on my home network, then when I am out and about, I can connect my VPN client to the server and my machine effectively joins my home network from across the internet.

THIS IS WHAT VPNS ARE DESIGNED FOR!!

Commercial VPN's are a complete **bleep**isation and rely on the publics misunderstanding of what the words 'private network' actually means.

Excluding TLS for a moment, while your data might be encrypted between your PC and the VPN server.  Once it's on the VPN network, it's in the clear, and can be sniffed by the VPN provider.

So while commercial VPN's can be useful, if you want to say watch American Netflix content in the UK (and note that Netflix do lock out VPN networks where they can), I'd be very wary of sending traffic such as email or banking traffic over them.

Tim

Edit - Also note that the anonymisation aspect means that VPN's appeal to spammers and other ne'er do wells as well.  At least one VPN provider that I know of blocked outbound email traffic from traversing their VPN for this very reason.