We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Which VPN?
Krakkkers
Posts: 1,321 Forumite
in Techie Stuff
Currently with PIA but subscription about to expire, is there a better, more secure one?
0
Comments
-
You might want to say why you want a VPN, and more secure from whom. Paying for a VPN just to make you more secure in general has become pointless.0
-
Why do you say it's pointless?... I believe it's a sensible precaution when using public wifi networks. I personally recommend express VPN.bob2302 said:You might want to say why you want a VPN, and more secure from whom. Paying for a VPN just to make you more secure in general has become pointless.0 -
I went with NordVPN, no complaints, I did chose it because of price (40p per month after cashback)
Let's Be Careful Out There0 -
When VPNs first became popular a lot of internet traffic was not secured and it was possible to read packets and extract passwords etc. These days everything is secured by TLS. .Bradden said:
Why do you say it's pointless?... I believe it's a sensible precaution when using public wifi networks. I personally recommend express VPN.bob2302 said:You might want to say why you want a VPN, and more secure from whom. Paying for a VPN just to make you more secure in general has become pointless.0 -
I went with NordVPN.0
-
I use NordVPN.0
-
The flaw here is that initial https headers are sent in the clear (because they happen before the web site is contacted and so you can’t have set up encryption). This means that whilst someone who was snooping can’t see what you are doing they can see what you sites you are contacting.bob2302 said:
When VPNs first became popular a lot of internet traffic was not secured and it was possible to read packets and extract passwords etc. These days everything is secured by TLS. .Bradden said:
Why do you say it's pointless?... I believe it's a sensible precaution when using public wifi networks. I personally recommend express VPN.bob2302 said:You might want to say why you want a VPN, and more secure from whom. Paying for a VPN just to make you more secure in general has become pointless.If that concerns you (because you might be profiled by what sites you visit) then a VPN is a good idea. Preferably an onion router with many layers.0 -
That's a privacy issue, not a security issue. And it certainly doesn't protect you from the VPN company knowing what sites you visit.PHK said:
The flaw here is that initial https headers are sent in the clear (because they happen before the web site is contacted and so you can’t have set up encryption). This means that whilst someone who was snooping can’t see what you are doing they can see what you sites you are contacting.bob2302 said:
When VPNs first became popular a lot of internet traffic was not secured and it was possible to read packets and extract passwords etc. These days everything is secured by TLS. .Bradden said:
Why do you say it's pointless?... I believe it's a sensible precaution when using public wifi networks. I personally recommend express VPN.bob2302 said:You might want to say why you want a VPN, and more secure from whom. Paying for a VPN just to make you more secure in general has become pointless.
FWIW websites are secured before http headers are sent - there's such thing as an https header. The privacy from onion routers doesn't depend on the number of nodes beyond 3.0 -
The destination website is still sent unencrypted in an https header.I disagree that it’s only a privacy issue. Data can be combined to cause a security issue. You could for example, find out who someone banks with and use that for a phishing or social engineering attack.0
-
Again, there is no such thing as an https header. HTTPS is HTTP over an encrypted connection.- the encryption is in place before any such headers are sent. The fact that so few people understand the basics of this is why VPNs are so easy to mis-sell.PHK said:The destination website is still sent unencrypted in an https header.I disagree that it’s only a privacy issue. Data can be combined to cause a security issue. You could for example, find out who someone banks with and use that for a phishing or social engineering attack.
A TLS connection will reveal the destination IP and it may reveal an additional host name that isn't already available through dns. Do you seriously think this is why most people are paying for a VPN?
0
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 352.2K Banking & Borrowing
- 253.6K Reduce Debt & Boost Income
- 454.3K Spending & Discounts
- 245.3K Work, Benefits & Business
- 600.9K Mortgages, Homes & Bills
- 177.5K Life & Family
- 259.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards