There’s way too much hype over VPN Providers, but do not forget, you are routing all your traffic through their servers

As a general advice, if a VPN provider keeps logs of your activity, does not allow you to pay with crypto, and generally spends way too much on youtube ads is probably not an ideal choice.

Do not follow any advice/recommendation blindly, do your own research on which one offers the best service for your own needs.

TorrentFreak Q&A with VPN Providers

  • PeachMan@lemmy.one
    link
    fedilink
    English
    arrow-up
    54
    ·
    edit-2
    1 year ago

    Something that people need to realize: If you want a VPN for PRIVACY, Mullvad (edit: also maybe IVPN) is the only good option on this list. They make it very easy for you to maintain complete anonymity, they don’t even WANT your email address, you can use crypto, or you can literally mail them an envelope of cash with a note inside containing your unique ID and they’ll load up your account with that value. It’s ridiculous how seriously they take this stuff. And if you’re really concerned about privacy, you should also be taking extra steps like using a hardened OS and browser, and using disposable virtual machines. But I suspect that most of us here aren’t that concerned with actual privacy.

    If you want a VPN for PIRACY, any of these options are probably fine as long as they don’t block or slow torrent traffic. Just use the fastest one here that you can afford. The only thing you’re really doing in this case is blocking your torrent traffic from your ISP. Remember, if you give them a credit card and your email address, then that’s not private! It’s just for piracy. It’s important to look at your priorities and pick a VPN accordingly.

    • GlitzyArmrest@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      ·
      1 year ago

      IVPN and Mullvad are probably the only two that give a shit about privacy. Neither require email or credit cards, and accept cash.

      • amanneedsamaid@sopuli.xyz
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        I personally don’t care if a vpn requires email as I can create an alias / burner email to use.

        I like how IVPN does it, as you have a choice to use a random id or username and password.

    • shitass@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      1 year ago

      It’s just for piracy

      Does that mean when you’re opting for the latter the payment method doesn’t matter as much?

      • PeachMan@lemmy.one
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        In my opinion, no. I live in the US where people don’t actually get prosecuted for piracy anymore, so I’m really not that concerned. I just want to stop getting letters from my ISP and having them (temporarily) cut my internet off until I watch their “educational” video. If they step up enforcement here, I might become more paranoid and lean more in the privacy direction.

    • state_electrician@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Well said, thank you. I use VPNs for piracy and when I’m on networks I trust less than my VPN provider. If you want privacy or even hide from the government, then your requirements are much, much higher.

    • Venutian Spring@lemmy.fmhy.ml
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      This is why I love mullvad. No signing in with username and password, no account information, just keep track of your account number and sign in with that.

        • Ilandar@aussie.zone
          link
          fedilink
          English
          arrow-up
          29
          ·
          1 year ago

          They don’t. I suspect you haven’t actually read one of these articles in detail.because it is in no way a recommendation from TorrentFreak. It literally opens with this:

          The VPN review business is also flourishing as well. Just do a random search for “best VPN service” or “VPN review” and you’ll see dozens of sites filled with recommendations and preferred picks. Some VPN companies, such as Kape, even own review sites.

          At TF we don’t want to make any recommendations. When it comes to privacy and anonymity, an outsider can’t offer any guarantees. Vulnerabilities are always lurking around the corner and even with the most secure VPN, you still have to trust the VPN company with your data.

          Instead, we aim to provide an unranked overview of VPN providers, asking them questions we believe are important. Many of these questions relate to privacy and security, and the various companies answer them in their own words.

          We hope that this helps users to make an informed choice. However, we stress that users themselves should always make sure that their VPN setup is secure, working correctly, and not leaking. Also, we advise people to properly research the company behind the VPN service.

          NordVPN appears first because it is a sponsor, as is clearly stated:

          *Note: Private Internet access, ExpressVPN and NordVPN are TorrentFreak sponsors. We reserve the first three spots for them as a courtesy. This article also includes a few affiliate links which help us pay the bills. We never sell positions in our review article or charge providers for a listing.

          The same questions are put to every VPN provider on the list. It is unranked - whether they first or last is completely irrelevant.

          • LoudWaterHombre@lemmy.dbzer0.com
            link
            fedilink
            English
            arrow-up
            0
            arrow-down
            4
            ·
            1 year ago

            But they are presenting the answers equal to others. That’s the point. You can’t make an article and ask some scientist and a madman questions and then present the answers next to each other, pretending the madman has equally valid output. They should put disclaimers on each provider with the different problems that occur with the certain provider. Like they were caught logging, they were breached, they are under bad jurisdictions etc

            • Ilandar@aussie.zone
              link
              fedilink
              English
              arrow-up
              4
              arrow-down
              1
              ·
              edit-2
              1 year ago

              Like they were caught logging, they were breached, they are under bad jurisdictions etc

              TorrentFreak already puts these questions directly to the providers. Again, do everyone a favour and actually read this article you are so intent on criticising. You seem to have absolutely zero understanding of it. It’s almost as if you skipped directly to NordVPN, saw it was listed first and made up this entire fake story in your head.

              • LoudWaterHombre@lemmy.dbzer0.com
                link
                fedilink
                English
                arrow-up
                3
                ·
                1 year ago

                I did and I know they put the questions to the provider, but what is it worth if they have been caught lying but still answer “no we don’t log” I believe they should highlight that fact.

  • Bresdin@lemmy.world
    link
    fedilink
    English
    arrow-up
    49
    arrow-down
    3
    ·
    1 year ago

    I still highly recommend Mullvad, they are generally an awesome company and havent had many issues with them beyond a few random sites blocking them which is to be expected.

      • amanneedsamaid@sopuli.xyz
        link
        fedilink
        English
        arrow-up
        4
        ·
        edit-2
        1 year ago

        I switched to Torguard and have gotten MUCH better speeds than I do with Proton and marginally better speeds than Mullvad. I had issues setting up port forwarding, but it was user error and Torguard customer support is next fucking level so I got that taken care of.

        Overall, no complaints so far.

        They also accept crypto payments, however there is an email requirement.

        • Poopasite1@lemmy.ml
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          Been using TorGuard for 2 years. My only complaint is that there was this once they insisted it was a client side issue for one of the servers in my home country. I was so pissed off because it was slow and disconnecting all the time and only on that server.

          Switched to Mullvad and loved it until port forwarding was removed… but now I’m back to TorGuard reluctantly. The customer support didn’t want to accept the possibility that their servers were going through some issues… didn’t even bother to check just because the server was online so it had to be client side but ever other server worked perfectly.

          • PracticalParrot@discuss.tchncs.de
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            What is the difference exactly? Can’t tell if I’m missing something fundamental or what. In my head there’s no reason you’d run into issues

            • ѕєχυαℓ ρσℓутσρє@lemmy.sdf.org
              link
              fedilink
              English
              arrow-up
              3
              ·
              edit-2
              1 year ago

              There’s no technical difference, but there are differences in practice.

              First of all, in order to transfer any content, one of the participants need an open port. In case of public trackers, there are usually a lot of users, so someone will probably have a port open that you can connect to. Also, many don’t even realize that they have open ports, since routers can open them on demand by uPnP. For private trackers, since the userpool is much smaller, it matters more.

              Also, for public trackers, you don’t really HAVE TO seed and maintain a good ratio. It’s the right thing to do, but is by no means a necessity. For private trackers, on the other hand, your account will be suspended in most cases if your ratio goes too low.

              • PracticalParrot@discuss.tchncs.de
                link
                fedilink
                English
                arrow-up
                1
                ·
                1 year ago

                I ask because I am on several private trackers and haven’t had issues downloading or seeding using mullvad. By what you explained, it shouldn’t be working…

                • ѕєχυαℓ ρσℓутσρє@lemmy.sdf.org
                  link
                  fedilink
                  English
                  arrow-up
                  3
                  ·
                  edit-2
                  1 year ago

                  I might be wrong, but I think port forwarding is working for already set up ones till 1st July. Or maybe you have a leaking port through uPnP? Again, just possibilities, not sure. Or maybe you’ve just been lucky and encountered people with open ports.

    • Qvest@lemmy.world
      link
      fedilink
      English
      arrow-up
      20
      arrow-down
      1
      ·
      1 year ago

      They recently got visited by officers of the country they’re in. The officers didn’t find shit (no logs, no ips, nothing)

      • Ilandar@aussie.zone
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        I’d like to use Mozilla VPN so I can support them financially (big Firefox user) but it’s still unavailable in my country. I’ve given up hope at this stage.

    • mac1202@lemmy.fmhy.ml
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      I use it for 2 years unfortunately from July 1 port forwarding will be removed. Had to switch to another vpn.

    • matt@infosec.pub
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      1
      ·
      1 year ago

      Yeah, I would still be using mullvad if they hadn’t removed port forwarding – it’s too damn bad but I get why they needed it. Switched to Proton but I imagine they’ll run into the same issue down the road and will need to find a more permanent solution.

    • mac1202@lemmy.fmhy.ml
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      I use it for 2 years unfortunately from July 1 port forwarding will be removed. had to switch to another vpn.

  • LukeSky53@lemmy.world
    link
    fedilink
    English
    arrow-up
    23
    ·
    1 year ago

    Wasn’t PIA bought out by a company that keeps logs a couple years ago? Interesting it made it on this list.

  • CookieJarObserver@feddit.de
    link
    fedilink
    English
    arrow-up
    17
    arrow-down
    2
    ·
    1 year ago

    I think not taking crypto currency is ok, on the other parts i agree.

    Thing is crypto currency is relatively unstable.

    • equalszero@lemmy.dbzer0.comOP
      link
      fedilink
      English
      arrow-up
      16
      arrow-down
      6
      ·
      1 year ago

      Paying with credit cards etc deanonymizes you

      I’m not a fan of using crypto as an investment tool, but since I cant pay with cash via the internet crypto is the next best option.

      • CookieJarObserver@feddit.de
        link
        fedilink
        English
        arrow-up
        14
        ·
        1 year ago

        Eh your bank just knows you pay for a VPN.

        I would like to be able to send a mail with the exact money in cash… But that remains a dream…

        • equalszero@lemmy.dbzer0.comOP
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          7
          ·
          1 year ago

          Eh your bank just knows you pay for a VPN.

          Some of them log your payment credentials, why would you want your VPN provider to have access to your real name and banking details? Even if you are not pirating content, its just creepy allowing them to do that to you.

          Unless you have somekind of a weird fetish that you enjoy knowing that when you browse the web you are not alone and being watched lol

          • CookieJarObserver@feddit.de
            link
            fedilink
            English
            arrow-up
            5
            arrow-down
            1
            ·
            1 year ago

            If i don’t trust my VPN provider i don’t use it at all…

            Personally i use Proton Enterprise (yes i need it all for myself, don’t ask why) so they already know wo i am, the important part is that they don’t give my data to others and don’t store stuff that isn’t necessary. They take crypto, but thats not exactly a necessity for most people, my bank and Proton are the only parts knowing i pay for a Proton account, if my government knows, wich it only could in a serious investigation against me, well, they don’t know what im doing there, they also just know i pay for Proton, wich also provides cloud storage and Email service among others its not illegal or Problematic to have that at all. (also i kinda work for the government so they wouldn’t give a fuck anyway…)

            • Wander@yiffit.net
              link
              fedilink
              English
              arrow-up
              2
              ·
              1 year ago

              Even if you trust them, the VPN provider is the single most important provider you don’t want to know details about you. That is because they are the ones who will also know about your real IP address.

            • equalszero@lemmy.dbzer0.comOP
              link
              fedilink
              English
              arrow-up
              2
              arrow-down
              2
              ·
              1 year ago

              Proton is a solid choice, they have awesome plans to bundle it with their email services afaik.

              But when it comes to “trust” I also trust my grocery store service, but I like to have the ability to just pay with cash and not have them log me by name each time I enter their store and what I’m looking at while in there, its creepy and unethical and we should not support those services.

      • Wander@yiffit.net
        link
        fedilink
        English
        arrow-up
        13
        arrow-down
        3
        ·
        1 year ago

        I don’t understand the downvotes. Crypto is ideal way of paying if you want to stay anonymous. Even Mullvad says that if you pay with Paypal that there’s some data they are required to keep on file.

        • CmdrShepard@lemmy.one
          link
          fedilink
          English
          arrow-up
          6
          arrow-down
          2
          ·
          1 year ago

          Crypto isn’t anonymous though from my understanding. Since every transaction gets recorded, you can be identified through your transaction history.

          • Yote.zip@pawb.social
            link
            fedilink
            English
            arrow-up
            5
            ·
            edit-2
            1 year ago

            It’s true and not true. If you’re not careful, you can get identified even while using cryptocurrency because the ledgers are all public. If anyone can figure out that you’re tied to a single one of your historical transactions, they can trace everything your “wallet” has ever done. But if you use single-use wallets, crypto shufflers, whatever else the kids have going these days, you can be untraceable. The easiest way to do private crypto is to use Monero, which automatically handles most privacy concerns.

            Edit: A small vid on monero: https://www.youtube.com/watch?v=B7sLnmlZ-kU

            I’m not immersed in the cryptocurrency world day-to-day so if anything has changed lmk

        • dannoffs@lemmy.sdf.org
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          You can also pay for mullvad by mailing them cash with a note saying which account to apply it to. I did it once just for fun.

      • Holzkohlen@feddit.de
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        The have voucher codes you can buy. Not quite sure if you will find them anywhere to buy in cash tho. Personally don’t care too much. Using a VPN isn’t illegal where I live.

      • CookieJarObserver@feddit.de
        link
        fedilink
        arrow-up
        10
        arrow-down
        1
        ·
        1 year ago

        Yeah i get that, but the only thing that can be found out is that you pay for a VPN, nothing else, and crypto isn’t that much more private compared to credit, debit or paypal.

  • somedaysoon@lemmy.world
    link
    fedilink
    English
    arrow-up
    12
    arrow-down
    1
    ·
    edit-2
    1 year ago

    You should not trust any provider that says they do not keeps logs unless they have been audited by a reputable 3rd party and then you are putting your trust in that 3rd party. Anyone can say that they do not keep logs so it’s absolutely meaningless, there really is no way to know unless you admin the server.

    The secret service used a honeypot VPN to successfully take down ShadowCrew almost 20 years ago. They have had the blueprint for 2 decades, so I wouldn’t be surprised if half these VPNs secretly cooperate with them over higher profile cases despite their claims.

    • ki77erb@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      ·
      edit-2
      1 year ago

      “Private Internet Access has verified in court multiple times that we keep no logs.”

      If they’ve gone to court on multiple occasions and proven they keep no logs, that’s pretty compelling evidence that they’re telling the truth. I guess you could never be 100% sure though.

      • somedaysoon@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        1
        ·
        1 year ago

        I’m not familiar with them, can you explain how you are certain they don’t keep logs?

        • zaine00@lemmy.world
          link
          fedilink
          English
          arrow-up
          10
          arrow-down
          1
          ·
          1 year ago

          No way to be 100% sure, but they were raided by police recently and supposedly walked away with nothing. Verge article

          SomeOrdinaryGamers had a video on it also.

        • equalszero@lemmy.dbzer0.comOP
          link
          fedilink
          English
          arrow-up
          9
          arrow-down
          3
          ·
          1 year ago
          • Does not contain non-free js in their website
          • Do not depend on google services etc.
            • Also have made major contributions to FOSS projects
          • There is no Swedish law applicable to them to share data with their goverment
          • They do NOT even allow you to create an account, you just generate a random account number, fill it up with time(monero & bitcoin & cash payment via mail allowed)
          • They also offer OpenVPN with RSA-4096 and WireGuard which uses Curve25519 and ChaCha20-Poly1305
          • Also awesome DNS protection

          There are other VPN providers that offer similar stuff to mullvad, I can keep going for days.

          TL;DR They do not ask you for any info that would deanonymize you & support FOSS projects

          • somedaysoon@lemmy.world
            link
            fedilink
            English
            arrow-up
            11
            arrow-down
            1
            ·
            edit-2
            1 year ago

            None of those things are proof that they don’t keep logs. You’re proving my point, and trusting a company because they have said the right things.

            • equalszero@lemmy.dbzer0.comOP
              link
              fedilink
              English
              arrow-up
              2
              ·
              edit-2
              1 year ago

              Some companies like Mullvad have no way to even keep logs

              They do not ask for information that would deanonymize you would be a better way of putting that

              I’m not familiar with them, can you explain how you are certain they don’t keep logs?

              TL;DR They do not ask you for any info that would deanonymize you & support FOSS projets

              None of that answers my question.

              I just shared a link where they answer those questions in much more detail that I can do via Lemmy commet replies. If you have specific questions please share them, if someone wants to help you out they will reply, otherwise just read the article and try different VPN providers out yoruself.

              edit: formatting replies edit2: Because you edited your reply you should NEVER trust any company with your personal information. You should just NOT give it to them, I do not trust Mullvad or any other “privacy” related company to store data that would deanonymize me, you are proving my point that you do not read what I’m typing or the article I’ve shared.

              • somedaysoon@lemmy.world
                link
                fedilink
                English
                arrow-up
                3
                arrow-down
                1
                ·
                edit-2
                1 year ago

                They wouldn’t need to ask for any info, and it doesn’t matter how you pay either. Having your connecting IP address is all that is needed to identify you.

                I’ve looked through it, there is no proof that they do not keep logs.

                And I don’t need help, you do, in understanding how proof and verification works. Go back to my original comment, and let me know if you have any proof that any of these providers don’t keep logs.

                • Unruffled [he/him]@lemmy.dbzer0.comM
                  link
                  fedilink
                  English
                  arrow-up
                  7
                  arrow-down
                  1
                  ·
                  1 year ago

                  I think that no amount of verification or technical details would satisfy you, because you could simply turn around and say, “well that might have been the case on the day is was verified, but what about the day after?” or “why should we trust the independent auditor?” In other words, you are just trolling. If you are the one claiming they are not trustworthy, despite them having an almost flawless reputation, then the onus is on you to provide evidence to back up your claims, not the other way around.

                • equalszero@lemmy.dbzer0.comOP
                  link
                  fedilink
                  English
                  arrow-up
                  3
                  ·
                  1 year ago

                  You should have “How do I know if they are not keeping logs of my IP address connections”

                  Your IP address does not always relate to you, either because you are using a public wifi(that you can bypass the payment portal thanks to mullvad btw) or on top of tor etc.

                  Your ISP is also a company, and as I said above you should not share your private information with them if possible and legal in your country.

                  They also claim:

                  When a customer connects to a VPN server, the server asks the central service to validate the account number, whether or not the account has any remaining time, if the account has reached its allowed number of connections, and so on. Everything is performed in temporary memory only; none of this information is permanently stored to disk

                  Which I have to guess is true for all the police raids they had that left the police with 0 evidence.

                  Ask specific questions, and be nice to others. You won’t learn much here otherwise, and if you know everything, why even post?

                  I do not advocate for mullvad, there are many other companies that are valid choices. That’s why I posted this to learn what others use or maybe some that are not even listed by torrentfreaks not to argue about the no-log policy of Mullvad.

  • TheSaneWriter@vlemmy.net
    link
    fedilink
    English
    arrow-up
    11
    ·
    1 year ago

    I use Mullvad. They have you buy time upfront at a fixed price, have lots of payment options, and at one point were subpoenaed and proved to the Swedish government they don’t store any user data and therefore have nothing to turn over. They have a nice app too, I like them.

    • JVT038@feddit.nl
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      They’re disabling port forwarding due to some bad actors… That’s why we can’t have nice things.

      For those who don’t know, port forwarding is mainly used for torrent seeders, aka the people who upload files to other people.

      • TheSaneWriter@vlemmy.net
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        That’s a shame. I hope it causes more services to be cool with their IP addresses, but it’s unfortunate for toerrenting and running local forwarded servers.

      • TheSaneWriter@vlemmy.net
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Indeed, apparently there are some American-based VPN companies that piggyback off their servers, so I figured why not use the service directly. Their apps are also full of features, so I really think the €5 a month price is worth it.

    • Lx32@feddit.it
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      The biggest problem of Mullvard, when I tried it, is that I cannot access to any streaming services. While atm with proton I have no problem at all

      • TheSaneWriter@vlemmy.net
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Apparently the reason for that is because malicious actors were port forwarding using Mullvad. They’re now disabling that feature, so it’s possible they will be whitelisted again in the future.

    • lobut@lemmy.ca
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Years ago I did it on a Black Friday or Christmas deal. They gave me instructions to test that my IP wasn’t leaking and their support was very helpful in confirming. I think they gave me protonmail for free alongside my subscription at the time?

      They were pretty fast and I felt user-friendly.

      I hadn’t used them in years so not sure if any of these still hold true though.

  • FinseTeo@sopuli.xyz
    link
    fedilink
    English
    arrow-up
    4
    ·
    1 year ago

    I recently made the switch from Surfshark to Mullvad. No real complaints about the actual VPN service with Surfshark, but the desktop app was constantly advertising their other products and was becoming bloated. Mullvad just does what I want it to do with little fuss.

  • Lennard@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    I use windscribe wich is rated quiet highly on some privacy blogs. Furthermore, their free plan (with discount code) is quite generous. I got 50gb per month for free. I can’t verify their no log policy, but at least they weren’t involved in a scandal yet, which you can’t say about a most VPN services :(