From bf5eca71218328e790f6e4bf9b443129da447c5c Mon Sep 17 00:00:00 2001 From: Daniel Gray Date: Wed, 22 Jan 2020 13:10:10 +0000 Subject: [PATCH] ProtonVPN has now audited and open source clients. --- _includes/sections/vpn.html | 45 +++++++++++++++++-------------------- pages/providers/vpn.html | 3 ++- 2 files changed, 23 insertions(+), 25 deletions(-) diff --git a/_includes/sections/vpn.html b/_includes/sections/vpn.html index 0fb879ae..f5a757b3 100644 --- a/_includes/sections/vpn.html +++ b/_includes/sections/vpn.html @@ -1,7 +1,7 @@ -

Recommended VPN Service

+

Recommended VPN Services

@@ -21,13 +21,15 @@

Mullvad is a fast and inexpensive VPN with a serious focus on transparency and security. They have been in operation since 2009. It is the only VPN provider that currently meets our criteria for recommendation. Mullvad is based in Sweden and does not have a free trial. Visit mullvad.net to create an account.

406+ Servers

Mullvad has 409 servers in 39 countries at the time of writing this page. Typically the more servers a provider offers, the better: With hundreds of servers in operation, you are far more likely to find a fast connection and a server geographically closest to you.

-
WireGuard Support
-

In addition to standard OpenVPN connections, Mullvad supports WireGuard. WireGuard is an experimental protocol with theoretically better security and higher reliability, although it is not currently recommended for production use.

Independently Audited

Mullvad's VPN clients have been audited by Cure53 and Assured AB in a pentest report published at cure53.de. The security researchers concluded:

...Cure53 and Assured AB are happy with the results of the audit and the software leaves an overall positive impression. With security dedication of the in-house team at the Mullvad VPN compound, the testers have no doubts about the project being on the right track from a security standpoint.

+
Open source clients
+

Mullvad provides the source code to their clients on GitHub.

+
WireGuard Support
+

In addition to standard OpenVPN connections, Mullvad supports WireGuard. WireGuard is an experimental protocol with theoretically better security and higher reliability, although it is not currently recommended for production use.

IPv6 Support

Mullvad supports the future of networking IPv6. Their network allows users to access services hosted on IPv6 as opposed to other providers who block IPv6 connections.

Remote port forwarding
@@ -40,41 +42,36 @@

The Mullvad VPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. The Mullvad website is also accessible via Tor at xcln5hkbriyklr6n.onion.

- - - - - -

Other Providers Worth Mentioning

- -
-
ProtonVPN

ProtonVPN Free USD $96/year

-

ProtonVPN is a strong contender in the VPN space, and they have been in operation since 2016. ProtonVPN is based in Switzerland and offers a limited free pricing tier, as well as premium options. Unfortunately due to its lack of an independent security audit it does not meet the complete criteria for recommendation, see our notes below.

-
Not Audited
-

ProtonVPN has not undergone a security audit by an independent third party, and therefore cannot be strongly recommended at this time. We have still chosen to list it on this page with the assumption that an audit will be published soon:

-
-

We are currently undergoing a complete security audit of our VPN applications by a reputable Swiss security company. The results of the audit will be summarized in a public report for cases like this.

-
Marc Loebekken, ProtonVPN AG Legal counsel
-
-

We will reevaluate this listing at the end of Q1 2020 or when the aforementioned report has been published, whichever is sooner. +

ProtonVPN is a strong contender in the VPN space, and they have been in operation since 2016. ProtonVPN is based in Switzerland and offers a limited free pricing tier, as well as premium options. Visit protonvpn.com to create an account.

610+ Servers

ProtonVPN has 610 servers in 44 countries at the time of writing this page. Typically the more servers a provider offers, the better: With hundreds of servers in operation, you are far more likely to find a fast connection and a server geographically closest to you.

+
Independently Audited
+

As of January 2020 ProtonVPN has undergone an independent audit by SEC Consult. See individual reports for each platform. +

Open source clients
+

ProtonVPN provides the source code to their clients on GitHub.

Accepts Bitcoin

ProtonVPN does technically accept Bitcoin payments; however, you either need to have an existing account, or contact their support team in advance to register with Bitcoin.

Mobile Clients

In addition to providing standard OpenVPN configuration files, ProtonVPN has mobile clients for iOS or Android allowing for easy connections to their servers.

Extra Functionality
-

The ProtonVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. ProtonVPN also offers "Tor" servers allowing you to easily connect to onion sites, but we still strongly recommend using the official Tor Browser for this purpose.

+

The ProtonVPN clients have a built-in killswitch to block internet connections outside of the VPN. They also are able to automatically start on boot. ProtonVPN also offers "Tor" servers allowing you to easily connect to onion sites, but we still strongly recommend using the official Tor Browser for this purpose.

+
+ + + +

Other Provider Worth Mentioning

+ +
diff --git a/pages/providers/vpn.html b/pages/providers/vpn.html index d3452744..638fa9b9 100644 --- a/pages/providers/vpn.html +++ b/pages/providers/vpn.html @@ -62,7 +62,8 @@ breadcrumb: "VPN"
  • OpenVPN and WireGuard support.
  • Killswitch with highly configurable options (enable/disable on certain networks, on boot, etc.)
    • -
  • Easy-to-use VPN clients, especially open-source. Even better if the Android version is also available in F-Droid.
    • +
  • Easy-to-use VPN clients
    • +
  • Clients are open source. We believe that source code availability provides greater transparency to the user about what their device is actually doing. Ideally we like to see these applications available in F-Droid.
  • Supports IPv6. We expect that servers will allow incoming connections via IPv6 and allow users to access services hosted on IPv6 addresses.
  • Capability of remote port forwarding assists in creating connections when using P2P (Peer-to-Peer) filesharing software, Freenet, or hosting a server (e.g., Mumble).