Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Thu 18 Jan 2018, 00:18
All times are UTC - 4
 Forum index » Advanced Topics » Additional Software (PETs, n' stuff) » Security/Privacy
VPN Comparison Chart & How to choose the best VPN
Post new topic   Reply to topic View previous topic :: View next topic
Page 2 of 2 [22 Posts]   Goto page: Previous 1, 2
Author Message
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Mon 06 Nov 2017, 15:39    Post subject: WireGuard
Subject description: the modern VPN
 

https://research.kudelskisecurity.com/2017/06/07/installing-wireguard-the-modern-vpn/

WireGuard is still experimental and is therefore not ready for production, but it is the way to go to make mass surveillance ineffective.

Further reading :
https://mullvad.net/blog/2017/7/7/how-run-wireguard-router/

WireGuard is a faster protocol

Below you can compare our results of running WireGuard and OpenVPN on various LEDE routers connected to Mullvad. In every case, WireGuard outperforms OpenVPN.

Router | CPU | OpenVPN | WireGuard
-----------------------------------------------------------------------------
GL-iNet6416 | 400mhz | 2–5 Mbit/s | 30–40 Mbit/s
ASUS RT-N66U | 600mhz | 5–10 Mbit/s | 40–60 Mbit/s
Linksys WRT1200AC | 1.3Ghz | 20–25 Mbit/s | 250–300 Mbit/s
Linksys WRT1900AC | 1.6Ghz | 30–35 Mbit/s | 300–350+ Mbit/s
NUC QuadCore Celeron | 2.0GHZ | 60–100 Mbit/s | 650+ Mbit/s (maximum unknown)


Running WireGuard with Mullvad on Linux :
https://www.mullvad.net/guides/wireguard-and-mullvad-vpn/
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Wed 22 Nov 2017, 11:25    Post subject: How to make a VPN kill switch in Linux  

In the event that the VPN connection unexpectedly drops, the computer will continue to send and receive traffic sent over your ISP’s unprotected network, possibly without you even noticing. To prevent this behavior, you can make yourself a simple kill switch that halts all internet traffic until the VPN connection is restored. We’ll show you how to write some easy rules using iptables and the Ubuntu Ultimate Firewall (UFW) application.

First, create a startvpn.sh script that puts firewall rules in place. These firewall rules only allow traffic over the VPN’s tun0 network interface, and they only allow traffic over that interface to go to your VPN’s server.

$ cat startvpn.sh
sudo ufw default deny outgoing
sudo ufw default deny incoming
sudo ufw allow out on tun0 from any to any
sudo ufw allow out from any to 54.186.178.243 # <-- note this is the IP from the "remote" field of your configuration file
sudo ufw enable
sudo ufw status
sudo openvpn client.conf &
Network traffic cannot pass over any other network interface with these firewall rules in place. When your VPN drops, it removes the tun0 interface from your system so there is no allowed interface left for traffic to pass, and the internet connection dies.

When the VPN session ends, we need to remove the rules to allow normal network traffic over our actual network interfaces. The simplest method is to disable UFW altogether. If you have existing UFW rules running normally, then you’ll want to craft a more elegant tear down script instead. This one removes the firewall rules and then kills openvpn with a script called stopvpn.sh

$ cat stopvpn.sh
sudo ufw disable
sudo ufw status
sudo kill `ps -ef | grep openvpn | awk '{print $2}'`
If you use some other means to connect to your VPN, you can eliminate the last two lines of each script. In such a configuration, you will have to remember to manually run the startvpn.sh script prior to starting your VPN using some other method. Once your VPN session ends, remembering to run the stopvpn.sh script isn’t hard; you’ll probably notice the lack of internet connectivity until you run it.

Further reading :
https://www.comparitech.com/blog/vpn-privacy/best-vpn-for-linux/
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Wed 22 Nov 2017, 14:11    Post subject: IP Binding and Vuze
Subject description: IP bind Vuze so that torrenting is done via VPN
 

https://wiki.vuze.com/w/Proxies_And_VPNs

First set your Mode to 'Advanced'. Next go to Connections->Advanced Network Settings and locate the interface name for your VPN (e.g. eth<number>). Enter this interface name in the 'Bind to local IP address or interface' box. Now scroll down to the bottom and check the 'Enforce IP bindings even when interfaces are not available' option.

More recent versions of Vuze will attempt to detect when your traffic is being routed via a VPN interface and offer to perform this configuration change for you.

If your VPN provider doesn't support incoming connections then you can explicitly disable these in Vuze by deselecting 'Incoming Connection' under 'Peer Sources' in Connections - if for some reason your public IP address is leaked (e.g. you start a download with your VPN disconnected and haven't bound explicitly to an interface) this will prevent other peers from connecting to you via this public IP.


Further reading :
https://www.privateinternetaccess.com/forum/discussion/4626/forcing-vuze-to-direct-all-torrent-traffic-through-pia/p2
https://www.wikihow.com/Set-Up-Vuze-with-VPN-and-Socks-Proxy-Properly

HOW TO CHECK YOUR TORRENT IP ADDRESS

https://www.best-bittorrent-vpn.com/check-torrent-ip.html
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Wed 22 Nov 2017, 14:38    Post subject: Notice of Claim of Copyright Infringement
Subject description: Legal issues with torrenting
 

You have nothing to hide, so you set up a torrent client, and start downloading season 1 of your best TV series, followed by 7 other seasons, all without a VPN (you have nothing to hide).

Then, to your surprise, you receive Notice of Claim of Copyright Infringement

What the heck!

In Canada :
The Copyright Modernization Act passed in January 2014 requires ISPs send notices to copyright violators on their networks. The recipients’ identities are stored on ISP servers for six months. Copyright holders cannot sue for damages of more than $5,000, which in most cases simply isn’t worth the time or effort.

The notification system is more educational than legal, but ISPs can still penalize torrenters by choking bandwidth.


In the US :
Downloading copyrighted material is illegal in the United States. ISPs often have a three-strike rule if they catch users torrenting illegally. Non-copyrighted material is completely legal to download.

Copyright holders often act through copyright trolls, which record IP addresses of torrenters and send settlement letters requesting remuneration. These entities have the right to sue on behalf of the copyright holder, but because an IP address does not legally constitute an identity in the US, the best option for recipients is to ignore them.


United Kingdom :
Larger ISPs are required by law to notify subscribers when the British Phonographic Industry catches them torrenting in the form of a cease and desist order. ISPs reserve the right to throttle bandwidth and disconnect users. ISPs with fewer than 400,000 subscribers are not subject to this law, however.

Copyright holders have the right to sue uploaders and downloaders for damages even if no monetary gain was involved.

Popular torrent trackers such as ThePirateBay are blocked by major ISPs in the UK, but these can still be accessed with a VPN.


Source :
https://www.comparitech.com/blog/vpn-privacy/best-vpns-for-torrenting-and-p2p-filesharing/

Conclusion :
Unless you are heavily torrenting copyrighted material and do it for money, do not expect to be prosecuted.

But you better use a VPN for that kind of traffic to play it safe.

For using torrent or P2P networks without any infractions of the law of countries where using torrent is forbidden, we recommend to use VPN servers in Netherlands, Sweden, Ukraine or Russia.
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Thu 30 Nov 2017, 12:09    Post subject: AirVPN
Subject description: a nice GUI for Linux users
 

AirVPN have the nicest GUI for Linux.

If you are a Debian Dog user, install their deb file, and dependencies will be installed automatically with menu item install deb + dependencies.

All told, it is only 16MB.

The price is right, a 35% rebate is offered for the time being.

What's more, AirVPN is backed by activists :
A VPN based on OpenVPN and operated by activists and hacktivists in defence of net neutrality, privacy and against censorship.

Net Neutrality being a thing of the past and affecting all internet users over the world, the internet is now a treasure-trove of data to be monetized by every corporations.

So don't ask if you need a VPN, you need one, ask yourself which VPN to use.

https://airvpn.org

Being born out of activism, here is a strong commitment :

AIRVPN DOES NOT RECOGNIZE ANYMORE VERISIGN, AFILIAS AND ICANN AUTHORITY. OUR COMMITMENT AGAINST UNITED STATES OF AMERICA UNFAIR AND ILLEGAL DOMAIN NAMES SEIZURES.

The United States of America authorities have been performing domain names seizures since the end of 2010. The seizures have been performed against perfectly legal web-sites and/or against web-sites outside US jurisdiction.

Administrators of some of those web-sites had been previously acquitted of any charge by courts in the European Union.

The domain name seizures affect the world wide web in its entirety since they are performed bypassing the original registrar and forcing VeriSign and Afilias (american companies which administer TLDs like .org, .net, .info and .com) to transfer the domain name to USA authorities property. No proper judicial overview is guaranteed during the seizure.

Given all of the above, we repute that these acts:

- are a violation of EU citizens fundamental rights, as enshrined in the European Convention on Human Rights;
- are an attack against the Internet infrastructure and the cyberspace;
- are a strong hint which shows that decision capacities of USA Department of Justice and ICE are severely impaired;

and therefore from now on AirVPN does not recognize VeriSign, Afilias and/or ICANN authority over domain names. AirVPN refuses to resolve "seized" domain names to the IP address designated by USA authorities, allowing normal access to the original servers' websites / legitimate Ip addresses.

In order to fulfil the objective, we have put in place an experimental service which is already working fine. If you find anomalies, please let us know, the system will surely improve in time.

Kind regards
AirVPN admins
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Tue 19 Dec 2017, 14:59    Post subject: CouchPotato (to download upcoming movies automatically)
Subject description: to be used with a VPN
 

https://www.linuxbabe.com/ubuntu/install-couchpotato-ubuntu-16-04-deluge

Some apps are better used with a VPN, such as CouchPotato.

How to Install CouchPotato on Ubuntu 16.04/17.04 with Deluge
Back to top
View user's profile Send private message 
labbe5

Joined: 13 Nov 2013
Posts: 1043
Location: Canada

PostPosted: Thu 28 Dec 2017, 16:03    Post subject: Popcorn Time
Subject description: to be used with a VPN
 

What is popcorn Time?

The movie streaming app that uses torrents to serve up movies like Netflix does.


An alternative installation :

How to download

Most probably know already how to do it. But just in case...
I use Ubuntu, so I'm taking that as the base for this tutorial, anyway, if you're using anything other than that you probably already know what you're doing.

Extract ptc.tar.xz on a folder (using a folder on the Desktop in this case)
Open the Terminal by using Ctrl+Alt+T de cd ~/Desktop/<folder>
Use the code ./install
Follow the installer.
After installing, go to ~/.Popcorn-Time (use Ctrl+H if you can't find it) and paste the contents of the .tar.xz in it.
Be sure to do step 6, otherwise Popcorn Time will only open nw.js instead of the actual program.

Download :
32-bit : http://www76.zippyshare.com/v/HZedxyDh/file.html
64-bit : http://www67.zippyshare.com/v/gqtIWFGh/file.html

Further reading :
http://popcorn-time.is/official-statement.html#Malware2
There are many versions out there and not all of them has your best interest in mind. Here is a diagram that has been circulating on Reddit and attempts to put the current mess into an easy to understand format. It might help you navigate in the PT jungle out there.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 2 of 2 [22 Posts]   Goto page: Previous 1, 2
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Advanced Topics » Additional Software (PETs, n' stuff) » Security/Privacy
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0675s ][ Queries: 12 (0.0089s) ][ GZIP on ]