1 |
On 05/27/2013 02:36 AM, Mick wrote: |
2 |
> On Monday 27 May 2013 02:43:08 walt wrote: |
3 |
>> This company: |
4 |
>> |
5 |
>> https://proxpn.com |
6 |
>> |
7 |
>> sponsors my all-time-favorite podcast, which I heartily commend to you: |
8 |
>> |
9 |
>> http://twit.tv/show/security-now |
10 |
>> (the audio podcast is what I suggest, as the video adds very little) |
11 |
>> |
12 |
>> Anyway, you can get a free account from proxpn.com by giving them a |
13 |
>> working email address (no credit card or any other personal info). |
14 |
>> |
15 |
>> Here is what I used to get it working on gentoo: |
16 |
>> |
17 |
>> net-misc/networkmanager |
18 |
>> net-misc/networkmanager-pptp |
19 |
>> |
20 |
>> and I had to add these to my kernel config: |
21 |
>> |
22 |
>> CONFIG_PPP |
23 |
>> CONFIG_PPP_MPPE |
24 |
>> CONFIG_PPP_ASYNC |
25 |
>> |
26 |
>> The name of the server to give networkmanager is pptp.proxpn.com |
27 |
>> |
28 |
>> I confess I have no idea how to do all of this without networkmanager, |
29 |
>> but I'd like to hear from you networking nerds out there who know more |
30 |
>> about this stuff than I do. |
31 |
> |
32 |
> Hi Walt, |
33 |
> |
34 |
> PPPTP uses a rather weak proprietary RC4 based encryption for tunnels in |
35 |
> old(er) MSWindows machines. At least make sure that it uses 128bit key |
36 |
> encryption, or better still drop this completely in favour of the OpenVPN |
37 |
> method which uses SSL certificates. |
38 |
> |
39 |
> PS. It would be better if these guys offered a more serious VPN |
40 |
> implementation, like IPSec VPN (with either IKEv1 or IKEv2). If they won't, I |
41 |
> would suggest you look for a provider that does. |
42 |
|
43 |
|
44 |
They do offer openvpn, but only the windows version has it. I've opened a |
45 |
support ticket asking them if/how I can use openvpn instead. I know it's |
46 |
possible but not how to do it. Yet :) |
47 |
|
48 |
Their windows vpn client is linked against openvpn and openssl, so I figure |
49 |
linux support will be clarified eventually. |
50 |
|
51 |
If everyone here would email them and offer to buy the pay version, but only |
52 |
after the linux openvpn support is made official... ;) |
53 |
|
54 |
|
55 |
> PPS. I see they are peddling privacy from governments' snooping efforts which |
56 |
> are fast being enshrined in law around the world, but can you really trust |
57 |
> them? What happens when the boys in black/blue knock on their door and ask to |
58 |
> have access to their servers? Heck, we all saw what happened with Kim Dotcom |
59 |
> in New Zealand, when the US media complex decided he was taking too big a |
60 |
> slice of their profits. Hosting servers in a foreign jurisdiction offers no |
61 |
> insurance, when money interests are more powerful than governments. |
62 |
|
63 |
I've always suspected that those boys in black/blue own every tor exit node |
64 |
out there, why not every vpn solution too? |