New VPN Service Can't Log Users by Design

https://torrentfreak.com/new-vpn-service-cant-log-users-by-design/

12•882542F3884314B•5h ago

Comments

phillipseamore•4h ago

Obscura.net seems to have a simpler and more secure solution than this

rasengan•4h ago

Obscura looks like it's a double hop system which lacks verification and is based on trust. All it takes is collusion of 2 persons to break this "security" model.

Trust, a non constant, has no place in a security architecture.

Don't trust, verify.

phillipseamore•4h ago

It seems I have to place the same trust in vp.net, a green check mark in the client is still just a promise of verification to (most) users and under control of the same entity. I finally found links on vp.net to source but it has no public repos https://github.com/vpdotnet.

eGQjxkKF6fif•3h ago

Check the client debug logs mine has the verification for the enclaves in it although I'm on an intel i3 but that makes sense for Intel's remote attestation that its verifying the enclave's unique hash and showing the MRENCLAVE hexes of the expected result.

phillipseamore•2h ago

But without the source being available you still need to trust vp.net to be providing the correct hash to compare to, right?

ZBalas•4h ago

Not that this makes it more safe... But I've been using VPNET for a month and it works well. Midwest. West Coast. Even in Mexico.

GhostGhillie•4h ago

Nice breakdown. Less trust the better. Seems obvious

johnnyHacker•4h ago

I heard the CIA uses SGX Enclaves too???

eGQjxkKF6fif•3h ago

Trying it out, so far so good. Worked on my mangled Linux install.

I have and have been using Proton VPN which the free version. If you use it for bittorrent, even to download a Linux ISO which is what I did, will straight up DNS hijack you and feed you a web page instead of the web page you're looking at to scream at you that BitTorrent is only allowed if you're a paying subscriber.

So.. that means they can just access and re-route your traffic however they want and make you see whatever they want.

Fascinating use for SGX Enclave tech, I see in the client debug logs show API hits that do the verification. I'm on an intel i3 with gigabit connection and am pulling 800mbps up/down.

GOP Bill Adds Surprise Tax That Could Cripple Wind and Solar Power

Community Is Not That

Show HN: Ciara – Securely deploy any application on any server

Sea slugs consume algae, incorporate photosynthetic parts to produce nutrients

The Forgotten Half of Scientific Thinking

Rome: The Wild Within the Walls

Writing Code to Be Read at a Glance

SlugOS has a working PMM, VMM, and Heap allocator

Nanosaur: Jetson robot 3D printable, open-source, ROS 2 and Isaac ROS based

Reimplementing Dynamic Arrays

Ask HN: Languages Designed for WASM?

Foxing

Mailcoach

TenZorro – AI-based platform with various digital services

Boeing 787 software may have caused AI crash: Aviation expert

Mathematician Terence Tao's three hour long conversation with Lex Fridman [video]

Ask HN: According to HN and r/reactjs, NextJS = bad. Yet many sites use it. Why?

UV-C light kills nearly everything–except this unusual organism

ESP32-LLM: Running a Little Language Model on the ESP32

Ruthless prioritization while the dog pees on the floor

Y Combinator (Math) Explained

Ask HN: What Happened to James Halliday ( Substack)?

Silicon Valley Insider Exposes Cult Like AI Companies [video]

Uncovering and addressing the secret water footprint of AI models

Semantic Kernel for JavaScript

Show HN: Kanban-Board agent management for software dev agents, open source

Buridan's Ass

Apple's Swift Working to Support Android App Development

Cozy cats live in a Raspberry Pi-powered luxury automated smart house

The Asymmetry of Destruction