Very cool, hopefully other companies take note.
Can someone explain to me what this means? I’m technologically inept when it comes to privacy, slowly getting better day-by-day thanks to Lemmy.
What does “without any disks in use” mean?
- If the computer is powered off, moved or confiscated, there is no data to retrieve.
- We get the operational benefits of having fewer breakable parts. Disks are among the components that break often. Therefore, switching away from them makes our infrastructure more reliable.
- The operational tasks of setting up and upgrading package versions on servers become faster and easier.
- Running the system in RAM does not prevent the possibility of logging. It does however minimise the risk of accidentally storing something that can later be retrieved.
https://mullvad.net/en/blog/2022/1/12/diskless-infrastructure-beta-system-transparency-stboot/
While mostly true, there are ways to preserve ram if the device is confiscated.
Your local PD likely couldn’t pull it off, but if one of the larger abbreviation agencies were to get involved, data on RAM isn’t a huge hurdle. Assuming no one flips the power switch, at least.
There are devices that allow moving and confiscating computers without powering them off.
The rest are true.
I’m not an expert but I think : The site you visit only sees the VPNs info. Which is how you maintain some anonymity while browsing. However, if your VPN keeps logs, then you can still be tracked, just at a different place. Some say they don’t keep logs, and you’d have to trust that.
RAM is considered volatile memory, so each time the server turns off, it loses all data. This is compared to disk (hard drives of whatever type) which retain memory even if the server turns off.
In theory, this ram only server prevents them from keeping logs (like which user went where) since the server wouldn’t even have a place to store it.
Edit: lustrums post is more accurate and has info that this doesn’t prevent logging per se, but could prevent accidental logging. I.e. they can’t hire a forensic computer specialist to parse through operating system logs to try to find info they didn’t otherwise log elsewhere.
The site you visit only sees the VPNs info. Which is how you maintain some anonymity while browsing.
A VPN just changes your IP, all your browser info is still visible to the website.
It does hide where your traffic is going to the ISP, no?
Mullvad also has their own browser that has some security features that prevent fingerprinting while also keeping an okay level of usability.
Some say they don’t keep logs, and you’d have to trust that. Note that this same caveat applies for a VPN provider promising they are running diskless endpoints. Or that they don’t have some third party monitoring their stuff even if diskless. Or that a law enforcement agency can’t come along with a warrant to require them to monitor an account’s activity moving forward, even if logs are not possible.
If your online activity justifies this level of paranoia, there’s probably no meaningful protection available for your wants in practice. If your provider is operating in a jurisdiction that is problematic for your online activity, they can probably ultimately be compromised. If you are just using it to access a different country’s streaming library, you probably don’t need to be that paranoid. If you are trying to disguise illegal activity that is illegal in the jurisdiction of the VPN endpoint, well you are likely boned with logging or not.
A normal computer is usually constantly writing little bits and pieces of data to disk. But data on the disk might accidentally remain on the disk even if it’s not intended. Then that data could be read later by someone else who is spying on VPN users .
There’s also a common assumption that data on disk storage may leave behind remnants even after it’s been overwritten. (Magnetic disks may leave behind some magnetic signatures. Flash drives will stop using sectors that are worn out, potentially leaving data there.) And state actors like NSA might have some capability to recover this ghost data if they get a hold of the actual drives.
There’s a general understanding that data on RAM is irrevocably destroyed within a short time after the device loses power. So attacks on RAM data have to occur in real time while the data is in use. (There may be some attacks that preserve RAM after power down using low temperatures and liquid nitrogen).
I do not use a VPN provider but damn, that’s cool as hell. Now how do I self host it? :D
But why would logs you hurt than?
How to debug and how to do forensic if only the supposed persons are connected to your home, if you don’t have any logs?
Note that the lack of logging probably doesn’t matter when your self-hosting, since it’s all for you.
Concept of RAM only Linux images with validation and signing is something seen in some datacenters. For example, Lenovo has this in their confluent cluster management (https://hpc.lenovo.com/). A node can network boot or boot from usb (read-only) and all writes go to RAM.
Alternatively, booting a LiveCD amounts to the same thing without requiring a boot server, you have a local ‘disk’ but nothing writes to it. If extra paranoid you could actually boot it from a burned DVD, but in practice even when booting from USB most ‘live’ images only write filesystem to RAM.
Great news! Mullvad is great even if their account security makes you do a double take
I assume they mean there are no account credentials. When you “create” an account on their website, you’ll be given a random account number, and no password.
Yeah this is what I meant. It feels so wrong but also makes complete sense.
I think I’ve gotten used to the “safety” of setting my own password and always typing it with my email or username.
But practically speaking they’re very similar and Mullvad’s is arguably safer
What’s to stop somebody guessing your account number and gaining access? (Honest question)
I am surprised that they don’t provide UUIDv4’s, feels like what they provide is somewhat guessable
https://mullvad.net/en/blog/2017/6/20/mullvads-account-numbers-get-longer-and-safer/
As they outline here, there are ~9 quadrillion possible keys, needing around 5.5 million guesses to find an account. I think they hit a nice middleground between decent entropy and still having a number you can memorize (like a credit card).
To be fair, would it matter if someone got access to your account key? There isn’t really any data on your account is there (isn’t that the point)? It’d just let you connect to the VPN
Last time I looked at VPNs, mullvad seemed highly recommended for privacy and security. Sounds like it may still be the case.
I also like that you don’t have to give them any private info at all to make an account. You can just send crypto and they’ll give you an account code and that’s it, you don’t even need an email address.
I haven’t tried it but apparently you can even mail them cash. You get a payment token and just send cash in an envelope and they’ll activate it whenever the money shows up!
you can also buy physical tokens (scratch cards with activation codes) in a shop, with cash
