I'd always assumed that was one of the more important features of a VPN, after protecting you from hostile local networks.
-
-
Replying to @aprilmpls @ericlaw
I think the most important feature is probably the generous margins from reselling bandwidth
What happened to the plan to deprecate http, that seemed like the right solution to me, not just shuffling bits around and calling it security.2 replies 0 retweets 3 likes -
Replying to @taviso @aprilmpls
I think we all know the score here.pic.twitter.com/luTPhvlZ9t
1 reply 0 retweets 2 likes -
Replying to @ericlaw @aprilmpls
Look, all I'm saying is why not use homeopathy *and* antibiotics? For just $4.99 a month, I'll provide all the sugar pills you can eat.
1 reply 0 retweets 6 likes -
Replying to @taviso @aprilmpls
Https isn't going to solve the privacy problem, nor will it, without full deployment, mitigate the problem of insecure traffic on compromised local networks. VPN is far from a silver bullet, but it's not nothing either.
1 reply 0 retweets 4 likes -
You know this. I know this. April knows this. People who follow you might not.
1 reply 0 retweets 4 likes -
Replying to @ericlaw @aprilmpls
I know that VPN doesn't solve it either, so I don't follow your argument.
2 replies 0 retweets 0 likes -
After much (needed & excellent!) work, only now are 80% of Android apps encrypting: https://security.googleblog.com/2019/12/an-update-on-android-tls-adoption.html … Hard for an educated layperson *who doesn't know the TLS state of their app stack* to conclude that VPN provides zero additional assurance on a *local* untrusted network.
1 reply 0 retweets 0 likes -
I assume you know the problem with this, a *local* untrusted network is no more secure than a *remote* untrusted network. You've just shuffled some packets around, collected $4.99 and improved nothing.
2 replies 0 retweets 4 likes -
I mean, the idea here is that the VPN is a remote *trusted* network, and one with an absolute ton of egress traffic. (and to be clear, I don't use them, but I also don't think they are valueless)
2 replies 0 retweets 4 likes
That is an unusual use of the term "trusted network". If it's trusted, then why bother with https at all, we can just tunnel everything to them and call the problem solved. TLS is only necessary over untrusted networks, right?
-
-
Let's not hyperbolize; I've been working for years to move everything to HTTPS/TLS. It is the most important thing we can do to protect traffic, and I never claimed that it wasn't. But TLS will never obscure the destination or quantity of your traffic, or its traffic patterns.
1 reply 1 retweet 7 likes -
Concur 100%. But an apparent conflict emerges when collection is shifted from one org to another, for money. And like the Firefox DoH move, it centralizes visibility - and exploitability and profit motive - for the data. There's no Let's Encrypt of VPNs (unless you count Tor).
1 reply 0 retweets 0 likes - 11 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.