Jump to content


VPNs?


  • Please log in to reply
79 replies to this topic

#26 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 01 January 2019 - 02:03 PM

View Postraymac46, on 01 January 2019 - 10:51 AM, said:

I have installed the PIA Beta on Linux Mint Cinnamon. I can get a little PIA green man launcher in the bottom panel with my other favorites. If I do close the PIA window I still have a white tray icon with a green indicator that allows total control. Bottom line, the Beta is far preferable in Linux.

I've never used the beta. I just use the normal client on my laptops and the openvpn config on my desktop.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#27 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 02 January 2019 - 06:50 PM

I was watching a video the other day about a fellow that has hit the road in his RV.  He mentioned that using public wifi you could be opening yourself up to hackers.  He suggested setting up a firewall for whatever OS you were using.  This stuff makes my head spin.  So I googled firewall for Slackware 14.1 and it brought a page that looked simple enough until I started scrolling down.  Did I mention this stuff makes my head spin?  I'm thinking if I don't use public wifi for banking etc...I shouldn't worry.....don't want to risk spinning my head off....Then I saw this post by OP Hedon James.   It almost sounds like what the fellow in the video was talking about.  Question....  are there any live versions that I could put on a thumbdrive that would have the security already set up?  I'm thinking if I was ever in the situation that I had to use pubic wifi for banking I could just plug a thumb drive in and proceed.  thanks....

Posted Image
REGISTERED LINUX USER #547579


#28 OFFLINE   sunrat

sunrat

    Thread Kahuna

  • Forum Moderators
  • 5,967 posts

Posted 02 January 2019 - 08:05 PM

Apparently MX Linux is quite easy to set up as live USB with persistence on a flash drive. Sure you could set up VPN on that.
registered Linux user number 324659  ||    The importance of Reading The *Fine* Manual! :D
Posted ImagePosted ImagePosted ImagePosted Image
For the things we have to learn before we can do them, we learn by doing them.

#29 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 02 January 2019 - 10:29 PM

View Postwa4chq, on 02 January 2019 - 06:50 PM, said:

I was watching a video the other day about a fellow that has hit the road in his RV.  He mentioned that using public wifi you could be opening yourself up to hackers.  He suggested setting up a firewall for whatever OS you were using.  This stuff makes my head spin.  So I googled firewall for Slackware 14.1 and it brought a page that looked simple enough until I started scrolling down.  Did I mention this stuff makes my head spin?  I'm thinking if I don't use public wifi for banking etc...I shouldn't worry.....don't want to risk spinning my head off....Then I saw this post by OP Hedon James.   It almost sounds like what the fellow in the video was talking about.  Question....  are there any live versions that I could put on a thumbdrive that would have the security already set up?  I'm thinking if I was ever in the situation that I had to use pubic wifi for banking I could just plug a thumb drive in and proceed.  thanks....

Simply using a trustworthy VPN will elevate the issue. Firewall rules would be needed if you didn't have a VPN. Remember.. your provider (ISP or whomever is running the wifi signal) can only see one single connection to your VPN, everything else is encrypted and hidden. For instance, when I am connected to a VPN at home, my ISP only sees one single connection to my VPN provider and cannot  see anything after that. As long as your VPN provider can pass DNS leak tests, the outside connection cannot see anything at all.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#30 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 03 January 2019 - 08:55 AM

View Postsunrat, on 02 January 2019 - 08:05 PM, said:

Apparently MX Linux is quite easy to set up as live USB with persistence on a flash drive. Sure you could set up VPN on that.
Good morning sunrat.  Tnx for the reply.  As a matter of fact, I do have MX-17 w/ persistence on a flash drive.  I'll have to do more research.  Tnx!

Posted Image
REGISTERED LINUX USER #547579


#31 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 03 January 2019 - 09:41 AM

View Postsecuritybreach, on 02 January 2019 - 10:29 PM, said:

View Postwa4chq, on 02 January 2019 - 06:50 PM, said:

I was watching a video the other day about a fellow that has hit the road in his RV.  He mentioned that using public wifi you could be opening yourself up to hackers.  He suggested setting up a firewall for whatever OS you were using.  This stuff makes my head spin.  So I googled firewall for Slackware 14.1 and it brought a page that looked simple enough until I started scrolling down.  Did I mention this stuff makes my head spin?  I'm thinking if I don't use public wifi for banking etc...I shouldn't worry.....don't want to risk spinning my head off....Then I saw this post by OP Hedon James.   It almost sounds like what the fellow in the video was talking about.  Question....  are there any live versions that I could put on a thumbdrive that would have the security already set up?  I'm thinking if I was ever in the situation that I had to use pubic wifi for banking I could just plug a thumb drive in and proceed.  thanks....

Simply using a trustworthy VPN will elevate the issue. Firewall rules would be needed if you didn't have a VPN. Remember.. your provider (ISP or whomever is running the wifi signal) can only see one single connection to your VPN, everything else is encrypted and hidden. For instance, when I am connected to a VPN at home, my ISP only sees one single connection to my VPN provider and cannot  see anything after that. As long as your VPN provider can pass DNS leak tests, the outside connection cannot see anything at all.
Good morning SB....thanks for the info.  To start the learning process, I looked up the wiki for VPN's....boy, my head is starting to hurt...  >_<

Posted Image
REGISTERED LINUX USER #547579


#32 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 03 January 2019 - 09:46 AM

View Postwa4chq, on 03 January 2019 - 09:41 AM, said:

View Postsecuritybreach, on 02 January 2019 - 10:29 PM, said:

View Postwa4chq, on 02 January 2019 - 06:50 PM, said:

I was watching a video the other day about a fellow that has hit the road in his RV.  He mentioned that using public wifi you could be opening yourself up to hackers.  He suggested setting up a firewall for whatever OS you were using.  This stuff makes my head spin.  So I googled firewall for Slackware 14.1 and it brought a page that looked simple enough until I started scrolling down.  Did I mention this stuff makes my head spin?  I'm thinking if I don't use public wifi for banking etc...I shouldn't worry.....don't want to risk spinning my head off....Then I saw this post by OP Hedon James.   It almost sounds like what the fellow in the video was talking about.  Question....  are there any live versions that I could put on a thumbdrive that would have the security already set up?  I'm thinking if I was ever in the situation that I had to use pubic wifi for banking I could just plug a thumb drive in and proceed.  thanks....

Simply using a trustworthy VPN will elevate the issue. Firewall rules would be needed if you didn't have a VPN. Remember.. your provider (ISP or whomever is running the wifi signal) can only see one single connection to your VPN, everything else is encrypted and hidden. For instance, when I am connected to a VPN at home, my ISP only sees one single connection to my VPN provider and cannot  see anything after that. As long as your VPN provider can pass DNS leak tests, the outside connection cannot see anything at all.
Good morning SB....thanks for the info.  To start the learning process, I looked up the wiki for VPN's....boy, my head is starting to hurt...  >_<

Forget that, all you need to know is how to use a client config using openvpn or just use their graphical client. No configuration needed.

To make your own VPN takes some time but using one is simple to do.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#33 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 03 January 2019 - 10:39 AM

Thanks again, SB

Quote

Forget that, all you need to know is how to use a client config using openvpn or just use their graphical client. No configuration needed.
Oh, that's good to know.  I thought it would be way over my head.

Quote

To make your own VPN takes some time but using one is simple to do.
OK, that makes sense.  Tnx

Posted Image
REGISTERED LINUX USER #547579


#34 OFFLINE   Hedon James

Hedon James

    Topic Cop

  • Members
  • PipPipPipPipPipPipPip
  • 922 posts

Posted 03 January 2019 - 02:12 PM

I'm with you wa4chq!  Most of this is over my head too!  I only have a vague understanding of VPNs, what they are, and how they could be helpful for privacy issues.  The recommendation for PIA here was VERY helpful, as it accelerated my curve past all this VPN mumbo-jumbo that I don't fully understand (yet) and allowed me to go straight to being an end-user.  I also recommend PIA, but the BETA version of the app, for getting up and running ASAP.

I hope to figure out the rest of what I don't know over time, as I run into issues and experience things.  JMO...  Good luck buddy!

#35 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 03 January 2019 - 03:08 PM

View PostHedon James, on 03 January 2019 - 02:12 PM, said:

I'm with you wa4chq!  Most of this is over my head too!  I only have a vague understanding of VPNs, what they are, and how they could be helpful for privacy issues.  The recommendation for PIA here was VERY helpful, as it accelerated my curve past all this VPN mumbo-jumbo that I don't fully understand (yet) and allowed me to go straight to being an end-user.  I also recommend PIA, but the BETA version of the app, for getting up and running ASAP.

I hope to figure out the rest of what I don't know over time, as I run into issues and experience things.  JMO...  Good luck buddy!
Thanks for the info, Hedon James.  Just made my way over to https://www.privatei...s/how-it-works/
I've got some reading to do....  lol

Posted Image
REGISTERED LINUX USER #547579


#36 OFFLINE   abarbarian

abarbarian

    Thread Kahuna

  • Forum MVP
  • 5,741 posts

Posted 09 January 2019 - 02:50 PM

Which VPN Services Keep You Anonymous in 2018?



In response to a growing threat of Internet surveillance and censorship, VPN services have surged in popularity in recent years. Encrypting one's traffic through a VPN connection helps to keep online communications private, but what more does your VPN provider do to keep you anonymous? We take a look at the logging policies and other privacy features of dozens of VPN providers.

Posted ImageUsing a VPN service is a great way to protect your privacy online.
However, not all VPN services are as private as you might think. In fact, some are known to keep extensive logs that can easily identify specific users on their network.

This is the main reason why we publish a yearly VPN review, asking providers about their respective logging policies as well as other security and privacy aspects.

It’s worth keeping in mind though that not all VPN protocols and encryption algorithms are equally secure. PPTP is known to be vulnerable for example, and pre-shared keys are also a risk. We ask all VPN providers what their best recommendation is, but we encourage readers to fully research all options.
Also, VPN users should always do a proper IP-leak test to confirm that their setup is safe from IPv6, DNS, WebRTC and other leaks.

:breakfast:

PIA comes second in their list so they must think quite highly of it or maybe they get a kickback for promoting it.

Edited by abarbarian, 09 January 2019 - 02:53 PM.

Install ARCH
You'll never need to install it again
"I did and I'm really happy"

Posted Image~~~~~~~~~~~~~Posted Image

#37 OFFLINE   V.T. Eric Layton

V.T. Eric Layton

    Nocturnal Slacker

  • Forum Admins
  • 21,788 posts

Posted 09 January 2019 - 06:28 PM

PIA comes in 2nd to Nord at PCMag, too. This is where I first heard about PIA, actually. :)

https://www.pcmag.co...,2403388,00.asp

#38 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 09 January 2019 - 06:52 PM

I used Nord at one time and while they provided an ok VPN, I didn't get very fast speeds. I read plenty of other reviews that say the same thing:

NordVPN Review: Easy But Slow from Tom's Hardware.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#39 OFFLINE   V.T. Eric Layton

V.T. Eric Layton

    Nocturnal Slacker

  • Forum Admins
  • 21,788 posts

Posted 09 January 2019 - 11:06 PM

Speed's not a problem for me with PIA, even when using distant exit servers. Also, I use 256 encryption, not the standard 128.

#40 OFFLINE   sunrat

sunrat

    Thread Kahuna

  • Forum Moderators
  • 5,967 posts

Posted 10 January 2019 - 02:57 AM

View PostV.T. Eric Layton, on 09 January 2019 - 11:06 PM, said:

Speed's not a problem for me with PIA, even when using distant exit servers. Also, I use 256 encryption, not the standard 128.
Is that like Spinal Tap encryption? :teehee: :whistling:
registered Linux user number 324659  ||    The importance of Reading The *Fine* Manual! :D
Posted ImagePosted ImagePosted ImagePosted Image
For the things we have to learn before we can do them, we learn by doing them.

#41 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 10 January 2019 - 06:01 AM

View PostV.T. Eric Layton, on 09 January 2019 - 11:06 PM, said:

Speed's not a problem for me with PIA, even when using distant exit servers. Also, I use 256 encryption, not the standard 128.
Yup, I do the same.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#42 OFFLINE   V.T. Eric Layton

V.T. Eric Layton

    Nocturnal Slacker

  • Forum Admins
  • 21,788 posts

Posted 10 January 2019 - 08:35 AM

View Postsunrat, on 10 January 2019 - 02:57 AM, said:

View PostV.T. Eric Layton, on 09 January 2019 - 11:06 PM, said:

Speed's not a problem for me with PIA, even when using distant exit servers. Also, I use 256 encryption, not the standard 128.
Is that like Spinal Tap encryption? :teehee: :whistling:

https://youtu.be/Sq3YD7fNZTI

#43 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 25 June 2019 - 03:31 PM

Well, I set up an account with PIA....  to use a quote from one of my favorite movies, "Is it safe?"  Right now, I'm in a public library.  Piavpn is running and I'm in "Vancouver"  (I wish...Granville Island and enjoying the Jazzfest...oh and a brew).  If I want to check my bank account online I'm gonna be safe, right?  I didn't set the two-factor authentication up but am heading there now.

Posted Image
REGISTERED LINUX USER #547579


#44 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 25 June 2019 - 03:53 PM

Yes, you will 100% safe as long as you use PIA.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#45 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 25 June 2019 - 04:09 PM

Cool!...  now I need to get the stupid QR scanner thang working so I can set up the two-factor authentication.   OK...found "google authenticator"....here goes....

Posted Image
REGISTERED LINUX USER #547579


#46 OFFLINE   wa4chq

wa4chq

    Thread Head

  • Members
  • PipPipPipPipPipPip
  • 683 posts

Posted 25 June 2019 - 04:22 PM

OK...it looks like they supply a series of authentications that are one-time only.  I'm assuming after using them I will have to scan the QR code again to get another set.....

Posted Image
REGISTERED LINUX USER #547579


#47 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 25 June 2019 - 05:51 PM

Yes, that is how two factor authentication works. You have a password and then a second form of Auth which is usually generated using an app or hardware token.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#48 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 25 June 2019 - 06:39 PM

Google authentication is ok but I prefer Authy as it is opensource it allows you to transfer between devices easily.  With Google Authenticator, you have to use the backup codes that get generated with each account to change devices.  Trust me, this is a big problem once you have a bunch of 2FA accounts. How Authy Built A Fault-Tolerant Two-Factor Authentication Service

You can also use a hardware 2FA device like a Yubikey. This gives you even more security as it requires the physical usb drive to be inserted that generates a unique key each time and your password. You can also set it up with your password manager and you can even set up to login to your linux machine using PAM. I keep my Yubikey in my wallet and use it  unlock my password manager on various devices and also used to login to my server and my main laptop. Basically you would need to have the usb hardware key and the password to log into my accounts. I have used Yubi keys for years now.

Most companies do something similar. Like for instance at my job, they use smartcards as the second form of authentication on laptops and work as keys to go through doorways around the building using NFC.
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984

#49 OFFLINE   V.T. Eric Layton

V.T. Eric Layton

    Nocturnal Slacker

  • Forum Admins
  • 21,788 posts

Posted 25 June 2019 - 09:51 PM

Congrats, Neil. You can now join all the other folks in the U.S. who use VPNs in the FBI's suspicious characters dossier. ;)

#50 OFFLINE   securitybreach

securitybreach

    CLI Phreak

  • Forum Admins
  • 24,708 posts

Posted 26 June 2019 - 06:10 AM

Well everyone is on that list...
Posted ImagePosted Image
Configs/PGP Key/comhack π

"Do you begin to see, then, what kind of world we are creating? It is the exact opposite of the stupid hedonistic Utopias that the old reformers imagined. A world of fear and treachery and torment, a world of trampling and being trampled upon, a world which will grow not less but more merciless as it refines itself. Progress in our world will be progress toward more pain." -George Orwell, 1984




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users