Honestly, in this day and age I consider VPN a basic internet hygiene. There are many many reasons to not trust your ISP and the wire between your home and ISP. You have moderation here, why do you even need to block VPN? I registered this account from VPN, but I somehow cannot comment from VPN? Doesn’t make much sense. I’m using paid Proton VPN servers, and btw I’ve seen Proton having a dedicated community here on this platform.

You are viewing a single thread.
View all comments
1 point

I’m all for the use of vpns but why do you call it basic internet hygiene? Your traffic will just have a different egress point on the Internet, it doesn’t really provide any additional security unless you are using it to access private networks.

permalink
report
reply
4 points

Because it protects you from ISP or targeted MITM. Lets say your ISP decides to spy on users or someone cuts into the internet wire going from your appartment to ISP, without VPN they can fully see and modify all http traffic as it’s totally unencrypted, in https traffic they can’t see the content but they see domain names of sites you are visiting and exact time when you are visiting them. With VPN 100% of your traffic is encrypted and in similar situation absolutely nothing is visible or modifiable. Someone can MITM on VPN provider itself, but it’s not really suitable for targeted scenarios, because those wires are in other part of the world than you, those wires are much better physically protected and even if malicious actors succeed they will have very hard time filtering traffic from different users from each other.

permalink
report
parent
reply
2 points

I agree with preventing your ISP from being able to see your traffic, but not necessarily on the mitm attacks. In either case, a mitm needs to be positioned properly.

As far as the ISP seeing your DNS traffic, there are ways to derive your real IP based on DNS queries. DNS leaks are a thing. It’s not necessarily true that 100% of your traffic is encrypted.

permalink
report
parent
reply
1 point

Do you think VPN doesn’t necessarily prevent MITM anywhere between you and VPN server? Regarding DNS queries, here is a quote I found: “Full-Tunnel VPN routes and encrypts all the Internet traffic through the VPN. Consequently, DNS requests are also encrypted and out of the control of the Internet provider". I’m not sure how to setup VPN in a way that doesn’t tunnel DNS requests through VPN server because I mostly use smart clients like Proton’s one that route everything and have total killswitch.

permalink
report
parent
reply

Lemmy.world Support

!support@lemmy.world

Create post

Lemmy.world Support

Welcome to the official Lemmy.world Support community! Post your issues or questions about Lemmy.world here.

This community is for issues related to the Lemmy World instance only. For Lemmy software requests or bug reports, please go to the Lemmy github page.

This community is subject to the rules defined here for lemmy.world.

To open a support ticket


You can also DM https://lemmy.world/u/lwreport or email report@lemmy.world (PGP Supported) if you need to reach our directly to the admin team.


Follow us for server news 🐘

Outages 🔥

https://status.lemmy.world



Community stats

  • 212

    Monthly active users

  • 1K

    Posts

  • 6.9K

    Comments