this post was submitted on 29 Aug 2024
16 points (76.7% liked)

Lemmy.world Support

3212 readers
18 users here now

Lemmy.world Support

Welcome to the official Lemmy.world Support community! Post your issues or questions about Lemmy.world here.

This community is for issues related to the Lemmy World instance only. For Lemmy software requests or bug reports, please go to the Lemmy github page.

This community is subject to the rules defined here for lemmy.world.

To open a support ticket Static Badge

You can also DM https://lemmy.world/u/lwreport or email report@lemmy.world (PGP Supported) if you need to reach our directly to the admin team.

Follow us for server news ๐Ÿ˜

Outages ๐Ÿ”ฅ

https://status.lemmy.world

founded 1 year ago
MODERATORS
ruud@lemmy.world
MrKaplan@lemmy.world
jelloeater85@lemmy.world
lwadmin@lemmy.world
Serinus@lemmy.world
16
Please allow VPNs (lemmy.world)
submitted 2 months ago by Tellore@lemmy.world to c/support@lemmy.world
22 comments fedilink hide all child comments
 

Honestly, in this day and age I consider VPN a basic internet hygiene. There are many many reasons to not trust your ISP and the wire between your home and ISP. You have moderation here, why do you even need to block VPN? I registered this account from VPN, but I somehow cannot comment from VPN? Doesn't make much sense. I'm using paid Proton VPN servers, and btw I've seen Proton having a dedicated community here on this platform.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] Gimpydude@lemmynsfw.com 1 points 2 months ago (1 children)

I'm all for the use of vpns but why do you call it basic internet hygiene? Your traffic will just have a different egress point on the Internet, it doesn't really provide any additional security unless you are using it to access private networks.

[โ€“] Tellore@lemmy.world 4 points 2 months ago (1 children)

Because it protects you from ISP or targeted MITM. Lets say your ISP decides to spy on users or someone cuts into the internet wire going from your appartment to ISP, without VPN they can fully see and modify all http traffic as it's totally unencrypted, in https traffic they can't see the content but they see domain names of sites you are visiting and exact time when you are visiting them. With VPN 100% of your traffic is encrypted and in similar situation absolutely nothing is visible or modifiable. Someone can MITM on VPN provider itself, but it's not really suitable for targeted scenarios, because those wires are in other part of the world than you, those wires are much better physically protected and even if malicious actors succeed they will have very hard time filtering traffic from different users from each other.

[โ€“] Gimpydude@lemmynsfw.com 2 points 2 months ago (1 children)

I agree with preventing your ISP from being able to see your traffic, but not necessarily on the mitm attacks. In either case, a mitm needs to be positioned properly.

As far as the ISP seeing your DNS traffic, there are ways to derive your real IP based on DNS queries. DNS leaks are a thing. It's not necessarily true that 100% of your traffic is encrypted.

[โ€“] Tellore@lemmy.world 1 points 2 months ago

Do you think VPN doesn't necessarily prevent MITM anywhere between you and VPN server? Regarding DNS queries, here is a quote I found: โ€œFull-Tunnel VPN routes and encrypts all the Internet traffic through the VPN. Consequently, DNS requests are also encrypted and out of the control of the Internet provider". I'm not sure how to setup VPN in a way that doesn't tunnel DNS requests through VPN server because I mostly use smart clients like Proton's one that route everything and have total killswitch.