We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Long Haul Flight - WiFi & VPN
Options
Comments
-
More secure? I know wireguard is lower overhead, but more secure is not something I've heard.Deleted_User said:
Even better it allows the Wireguard protocol which is more secure than OpenVPN, lower processor overhead to save battery on portable devices.
Not that I use VPN services where I don't control the endpoint.
edit - even Proton VPN which uses Wireguard acknowledges the security of openVPN https://protonvpn.com/blog/openvpn-vs-wireguard/Proud member of the wokerati, though I don't eat tofu.Home is where my books are.Solar PV 5.2kWp system, SE facing, >1% shading, installed March 2019.Mortgage free July 20230 -
So both are very secure and there isn't any historic vulnerabilities in either protocol that are concerning but:onomatopoeia99 said:
More secure? I know wireguard is lower overhead, but more secure is not something I've heard.Deleted_User said:
Even better it allows the Wireguard protocol which is more secure than OpenVPN, lower processor overhead to save battery on portable devices.
Not that I use VPN services where I don't control the endpoint.
edit - even Proton VPN which uses Wireguard acknowledges the security of openVPN https://protonvpn.com/blog/openvpn-vs-wireguard/- Auditability - Wireguard consist of just 4,000 lines of code vs 70,000 for OpenVPN. When it comes to auditing the code, Wireguard is much easier, one person could practically do that in a reasonable time period.
- Attack surface - as above, 70,000 lines of code are statistically more likely to contain a bug or vulnerability than 4,000 lines of code.
- Protocols - OpenVPN tries to be everything to everyone and is very compatible but allows downgrades to older and less secure protocols. Wireguard is more selective and uses a small subset of higher security protocols.
- Related to the above, Wireguard intentionally lacks protocol agility, if vulnerabilities are found, all endpoints are required to upgrade to the latest version and will reject any attempt to connect with vulnerable code.
0 - Auditability - Wireguard consist of just 4,000 lines of code vs 70,000 for OpenVPN. When it comes to auditing the code, Wireguard is much easier, one person could practically do that in a reasonable time period.
-
The less is more conundrum
Well crafted code can be concise but not everyone is good at it
Too many bug fixes on software add code rather's than fixing the code that was designed wrong in the first place.0 -
Back to the thread, wouldn't it be likely that some or all access via VPN be blocked on the plane in an effort to preserve the connection bandwidth for others?If too many passengers started streaming some HD movies the service could grind to a halt.0
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351.1K Banking & Borrowing
- 253.2K Reduce Debt & Boost Income
- 453.7K Spending & Discounts
- 244.1K Work, Benefits & Business
- 599.2K Mortgages, Homes & Bills
- 177K Life & Family
- 257.5K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards