Skip to content

Instantly share code, notes, and snippets.

@joepie91
Last active October 11, 2024 03:28
Show Gist options
  • Save joepie91/5a9909939e6ce7d09e29 to your computer and use it in GitHub Desktop.
Save joepie91/5a9909939e6ce7d09e29 to your computer and use it in GitHub Desktop.
Don't use VPN services.

Don't use VPN services.

No, seriously, don't. You're probably reading this because you've asked what VPN service to use, and this is the answer.

Note: The content in this post does not apply to using VPN for their intended purpose; that is, as a virtual private (internal) network. It only applies to using it as a glorified proxy, which is what every third-party "VPN provider" does.

  • A Russian translation of this article can be found here, contributed by Timur Demin.
  • A Turkish translation can be found here, contributed by agyild.
  • There's also this article about VPN services, which is honestly better written (and has more cat pictures!) than my article.

Why not?

Because a VPN in this sense is just a glorified proxy. The VPN provider can see all your traffic, and do with it what they want - including logging.

But my provider doesn't log!

There is no way for you to verify that, and of course this is what a malicious VPN provider would claim as well. In short: the only safe assumption is that every VPN provider logs.

And remember that it is in a VPN provider's best interest to log their users - it lets them deflect blame to the customer, if they ever were to get into legal trouble. The $10/month that you're paying for your VPN service doesn't even pay for the lawyer's coffee, so expect them to hand you over.

But a provider would lose business if they did that!

I'll believe that when HideMyAss goes out of business. They gave up their users years ago, and this was widely publicized. The reality is that most of their customers will either not care or not even be aware of it.

But I pay anonymously, using Bitcoin/PaysafeCard/Cash/drugs!

Doesn't matter. You're still connecting to their service from your own IP, and they can log that.

But I want more security!

VPNs don't provide security. They are just a glorified proxy.

But I want more privacy!

VPNs don't provide privacy, with a few exceptions (detailed below). They are just a proxy. If somebody wants to tap your connection, they can still do so - they just have to do so at a different point (ie. when your traffic leaves the VPN server).

But I want more encryption!

Use SSL/TLS and HTTPS (for centralized services), or end-to-end encryption (for social or P2P applications). VPNs can't magically encrypt your traffic - it's simply not technically possible. If the endpoint expects plaintext, there is nothing you can do about that.

When using a VPN, the only encrypted part of the connection is from you to the VPN provider. From the VPN provider onwards, it is the same as it would have been without a VPN. And remember, the VPN provider can see and mess with all your traffic.

But I want to confuse trackers by sharing an IP address!

Your IP address is a largely irrelevant metric in modern tracking systems. Marketers have gotten wise to these kind of tactics, and combined with increased adoption of CGNAT and an ever-increasing amount of devices per household, it just isn't a reliable data point anymore.

Marketers will almost always use some kind of other metric to identify and distinguish you. That can be anything from a useragent to a fingerprinting profile. A VPN cannot prevent this.

So when should I use a VPN?

There are roughly two usecases where you might want to use a VPN:

  1. You are on a known-hostile network (eg. a public airport WiFi access point, or an ISP that is known to use MITM), and you want to work around that.
  2. You want to hide your IP from a very specific set of non-government-sanctioned adversaries - for example, circumventing a ban in a chatroom or preventing anti-piracy scareletters.

In the second case, you'd probably just want a regular proxy specifically for that traffic - sending all of your traffic over a VPN provider (like is the default with almost every VPN client) will still result in the provider being able to snoop on and mess with your traffic.

However, in practice, just don't use a VPN provider at all, even for these cases.

So, then... what?

If you absolutely need a VPN, and you understand what its limitations are, purchase a VPS and set up your own (either using something like Streisand or manually - I recommend using Wireguard). I will not recommend any specific providers (diversity is good!), but there are plenty of cheap ones to be found on LowEndTalk.

But how is that any better than a VPN service?

A VPN provider specifically seeks out those who are looking for privacy, and who may thus have interesting traffic. Statistically speaking, it is more likely that a VPN provider will be malicious or a honeypot, than that an arbitrary generic VPS provider will be.

So why do VPN services exist? Surely they must serve some purpose?

Because it's easy money. You just set up OpenVPN on a few servers, and essentially start reselling bandwidth with a markup. You can make every promise in the world, because nobody can verify them. You don't even have to know what you're doing, because again, nobody can verify what you say. It is 100% snake-oil.

So yes, VPN services do serve a purpose - it's just one that benefits the provider, not you.


This post is licensed under the WTFPL or CC0, at your choice. You may distribute, use, modify, translate, and license it in any way.


Before you comment: Be aware that any non-constructive comments will be removed. This includes advertising for VPN providers (yes, even when you phrase the marketing claims like a question), trolling, harassment, insults towards other people, claims that have already been addressed in the article, and so on.

If your comment isn't a genuine question or a concrete counterargument supported by evidence, it probably doesn't belong here.

@GenericRsPlayer
Copy link

nukeop

so your argument is that because people are in jail, that we have no freedom of speech? point to me the political dissidents within the country that are currently in jail because they spoke ill of the governmental bodies in place

@Finoderi
Copy link

It's always easy to talk about things you don't know. In North Korea there are white lists of IPs you are allowed to connect to. Everything else are just dropped. It's pretty dumb and straightforward but no workaround exists. You can't pull routs out of your ass where they don't exist.
And in China shadowsocks is rather popular socks-proxy. But it's not a VPN and there are good reasons for that.

@GenericRsPlayer
Copy link

Alex Jones has to pay 6 gorillion dollars for his freedom of speech

alex jones had a lawyer that accidently emailed private conversations between him and AJ to the opposing defense team.
he also was up for deformation, in saying that no one was killed in Sandy Hook. News flash, they were.
He is a misinformation agent that is a MOSSAD plant. he purposefully tells you the truth, but twists it into a narrative. his job is to make people look crazy. and he does a fantastic job at it too.

he also; is not in jail. so please. try again. im very interested in understanding your logic on this.

@GenericRsPlayer
Copy link

GenericRsPlayer commented May 25, 2023

i was speaking as to people in NK. the government does issue computers to its citizens, but they are incredibly limited on what they see, and we are incredibly limited on what we see. what im saying is if a NK official who has unrestricted access (a hacker) can figure out how to setup a VPN, he more than likely could, because he would be able to get the information. from that point he could see the whole web.

i am, however; not an expert in this field, and will defer to others on their expertise.

dont forget that they even developed a video game at one point
https://en.wikipedia.org/wiki/Category:Video_games_developed_in_North_Korea

@Finoderi
Copy link

He is a misinformation agent that is a MOSSAD plant.
his job is to make people look crazy.

I wonder if this is fruits of his labour or you are just so... unique on your own...

@GenericRsPlayer
Copy link

He is a misinformation agent that is a MOSSAD plant.
his job is to make people look crazy.

I wonder if this is fruits of his labour or you are just so... unique on your own...

if you know; you know

@GenericRsPlayer
Copy link

Kids, now you see the effects of propaganda of success being forced on people for their entire lives. Americans truly believe their dystopic police state is a paradise on earth. You see, wikipedia has no information on north korean videogames; therefore amerimutts are the best.

im still waiting on proof of concept for your political dissidents.

not once did i claim America was a paradise. it has its problems like everywhere else does. but please; continue to say nothing, and put words in my mouth. if you want to know why I personally believe it is better than other countries; look at the tax rates (our highest tax rate overall is still lower than any other country on the planet) and healthcare (not its insurance system but the actual quality itself. people come from all over the world to get healthcare here) is, broken; but top of the line for the ones that have insurance. (not to mention most hospitals will treat you if you're not an American citizen, with American citizens tax dollars). not to mention freedom of speech; which is full circle back to what this whole conversation started on!

do you think NK is a wonderful place? go live there! they'd happily take you, as target practice once you approach the border.
my comparison was not to their quality of life, but as to how development does go on in the country with computers; and that people there may or may not have an ability to see the outside world.
you may have an issue with dyslexia and contextual information if you're struggling with that.

im trying to ask you a serious question. please. inform me, how we are all brainwashed and controlled by the system because we have a judicial system that operates. tell me which American in our country is a political prisoner. if you refuse to and continue to just take jabs at me; while providing no proof of anything. I'll just block you

@xNeonHD
Copy link

xNeonHD commented May 25, 2023

Kids, now you see the effects of propaganda of success being forced on people for their entire lives. Americans truly believe their dystopic police state is a paradise on earth. You see, wikipedia has no information on north korean videogames; therefore amerimutts are the best.

I am laughing at your idiocy. Either you must be a troll, or it must be a birthright to write such a comment unironically.

@GenericRsPlayer
Copy link

If the best you can say is that it's in some aspects better than North Korea then the bar isn't set very high

You clearly aren't interested in an intellectual conversation 😂😂. I never said this. Not once.

Kids, now you see the effects of propaganda of success being forced on people for their entire lives. Americans truly believe their dystopic police state is a paradise on earth. You see, wikipedia has no information on north korean videogames; therefore amerimutts are the best.

I am laughing at your idiocy. Either you must be a troll, or it must be a birthright to write such a comment unironically.

I choose to apply Hanlon's Razor with nukeop. He is right about one thing. The CIA loves to disinform people. He clearly has been affected.

@GenericRsPlayer
Copy link

GenericRsPlayer commented May 25, 2023

do you think NK is a wonderful place? go live there! they'd happily take you, as target practice once you approach the border.

You mean like this? https://en.wikipedia.org/wiki/Migrant_deaths_along_the_Mexico%E2%80%93United_States_border

Ok and when the border is open this problem gets worse because human trafficking of children goes up.

If people followed a legal process VS leaving it up to Cartel Cyoties women and children over the border who end up victims of SA and Rpe

But no. Open border clearly is the way to go. Turn on any TV channel and you'll see that.

Also no one tries to shoot you for traveling internationally

@GenericRsPlayer
Copy link

USA: The country that heroically overcomes problems unknown in any other country

Keep watching that TV

Nuke. Your all over the board bro. Bring it back to the start of the conversation.

Show me any political dissonant who have been locked up In the US. Any US citizen who is being held and not given his rights.

@LokiFawkes
Copy link

@nukeop If you want to play argumentum ad hominem, your profile says "fullstack software developer".

Nobody outside of HR cares about that term, at all. It's a term people who can't name what they do use to describe their skills, or lack thereof, in a favorable manner.

@LokiFawkes
Copy link

@nukeop It's so commonly used that anyone actually in tech knows you need to go into more detail or we throw out your application and tell our recruiters to stop sending people like you to us.

What do you write? What languages do you use in this "full stack", what do you use for backend, what do you use for frontend? Is your frontend HTML and JS or is it a generated page? Is your backend PHP, Node, Python, Java, C++, Rust(tm), etc? What do you use for SQL, or do you even use SQL? And finally, what do you specialize in?

Fail to answer any of these, or arrogantly say "all of it", and you're blacklisted from applying for a fucking year.

@GenericRsPlayer
Copy link

Lol ok

am curious as to why you deleted your previous comments....did you recognize your arguments fallacy?

@GenericRsPlayer
Copy link

No, I recognized that Github is an am***can service and as such, heavily censored, and I don't want to risk my account. Please stop sealioning

I haven't heard that term before. But looking it up; just sounds like a defense that someone throws out when they have no logical backing to their argument. Especially because I have no intention of bad faith in the argument. I would of love to have heard your reasoning to a logical conclusion. Especially since you were the one that initiated the topic of conversation in the first place.

Your a victim of your own creation. You know that; right?

@GenericRsPlayer
Copy link

GenericRsPlayer commented May 26, 2023

I wish you would stop talking and leave me alone


Reply to this email directly, view it on GitHub or >unsubscribe.
You are receiving this email because you commented on >the thread.
Show quoted text
@nukeop commented on this gist.
The message you're not getting is that nobody wants to talk to you
Show quoted text

You basically call me an idiot and expected me to just lie down and take it. Well bless your heart. Americans don't work that way. I'll stop replying once you stop replying. Till then I'll just keep quoting you.

@GenericRsPlayer
Copy link

GenericRsPlayer commented May 26, 2023

@nukeop commented on this gist.
Yes I already know that americans are brainwashed, obnoxious, and clueless. No need to drive the point home buddy

Wow you just continue to be oblivious too! You're not superior to anyone. Just as I am not superior to you. Clearly I have more common sense. But you just keep making fun of people; on a place where it won't go away. And where your future comments could be looked at as "doesn't cooperate well with others"

I'm not here to troll you. I'm just going to continue to hold up a mirror untill you've decided you've had enough.

Btw. Hope your having a wonderful day. God loves you brother.

@GenericRsPlayer
Copy link

I accept your concession.

I hope things get better for you

@Amiralgaby
Copy link

is there a French fork of this file please?

@2gn
Copy link

2gn commented May 26, 2023

VPNs will hide what you do from ISPs, at least.

@Finoderi
Copy link

It seems most people don't know anything about proxy servers, but VPN concept was popularized by YouTubers. And the 'glorified proxy' part is just ignored as something vague and inexplicit.

@LokiFawkes
Copy link

@2gn Not really. ISPs buy data from data brokers, which own almost all if not all the "vpn" services (which again are just proxies that maybe, MAYBE use a protocol meant for actual VPNs). Literally all they're good for is getting around geofilters and not a damn thing else.

@dxgldotorg
Copy link

dxgldotorg commented May 27, 2023

It seems most people don't know anything about proxy servers, but VPN concept was popularized by YouTubers. And the 'glorified proxy' part is just ignored as something vague and inexplicit.

Actually it is in more recent years that VPN companies have approached YouTubers with sponsorship deals.

@Finoderi
Copy link

From Nigeria with love.

@LokiFawkes
Copy link

We got another shill: @vpnsguru

@LokiFawkes
Copy link

Aaaand @nukeop steps back in the shill ring.

@LokiFawkes
Copy link

Keep shilling, you only have your reputation to lose... If that.

@LokiFawkes
Copy link

Talking to yourself? Cause you're the only mad one here.

@dxgldotorg
Copy link

Install Sponsorblock: https://sponsor.ajay.app/ Why would anyone watch videos with sponsor segments?

This doesn't address the issue, it sweeps it under the rug.

@Finoderi
Copy link

The article is rather short but you still failed to read it till the end. Well done.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment