Resellers list is only a subforum
Yea, that's so anyone can become a reseller if they want, and post about it there.
resellers.cryptostorm.ch just redirects to subforum, and gives invalid https certificate error
That's a leftover mistake from our former staff member, PJ. He thought subdomains looked "neat", so used them for everything, even whenever a subdir would have been better. I warned him that when HTTPS was up, it was going to cause problems later if we didn't buy a wildcard SSL cert for *.cryptostorm.ch, but he kept doing it anyways.
As a result, there's still old subdomains littered all over the forum.
I've tried to fix most of them by replacing them with correct subdir redirections, so resellers.cryptostorm.ch would change to https://cryptostorm.ch/resellers/ etc., but there's so many on the forum that I'm sure I've missed some.
I just updated the main cryptostorm.is page so that it links to the correct subdir instead of the subdomain that it was pointing to.
Resellers that don't exist are still sticky in the list
Removed the sticky bits for those threads.
subdomains for individual resellers don't work, give https certificate error
are there any resellers left?
AFAIK, the only one that's active is https://okaruto.space/
You said in TorrentFreak answers that you don't have a corporate entitity, but if not then how does the money flow? How are people in on the project getting paid? Are there contracts? Is it based purely on trust? How do you report it to taxes? Who do we pay to? Just a private person who then distributes it on?
There are several entities that make up CS, registered in different regions. We mostly keep these as hidden as possible to make it more difficult for anyone looking to subpoena CS. Finances are also done in a distributed manner, with no one bank account or bitcoin wallet storing everything. This is so if an entity (NSA, CIA, FBI, Mafia, whoever) are looking to pressure us by confiscating our funds, we just drop that account and carry on with the rest (and possibly replacing that compromised one with a different account).
As far as taxes go, we choose regions and entity types that only require a flat annual rate.
Other links on frontpage cryptostorm.ch also don't work, like http://bootstrap.cryptostorm.ch/ which is supposed to link to info about the company being a "decentralised organisation [with] roots in Iceland[,] branches worldwide, (most) financials via Québec proudly independent & private". It just links to the forum, also with https error.
See above regarding the subdomain SSL errors. cryptostorm.is (which is the one I'm assuming you meant) has been updated with the correct links.
Frontpage talks about warranty canaries, but there's no link and i didn't find any using google either, where are they to be found? or are they not there any more? And what does it mean if they're not?
Oops. The warrant canary is at https://cryptostorm.is/canary.txt , but I forgot to link it on the main page.
Front page has been updated with a link to it.
No clear guide how to install for each platform... you're just linking some guide posted 3 years ago by an anonymous guy with a request for feedback on it... if the guide is good, considering just offer it as a good guide, if it's not good, improve on it,or write something yourself (or if it's too much work to provide these, just tell people to google or link to some general openvpn guide that works for you)
This is something on our to-do list. I'd like to be able to provide tutorials for all the popular platforms, without requiring a visit to the messy forums. I was thinking of doing something like a wiki page for that.
in header of forum there's a link to "big things happening" but it links to a thread from 2016, that doesn't make clear what the status of the project is at all "is in process of being integrated" (unless reading many pages with blabla first i guess)...
The forum doesn't get updated often, so that thread doesn't reflect current features being worked on.
As of now, the next feature that will be added shortly are OpenVPN instances using EC certs and very strong crypto. The crypto currently in use is plenty strong, but it's not the latest/greatest because a lot of our customers are connecting to CS on embedded devices that are often difficult to upgrade OpenVPN on. The latest OpenVPN 2.4.x is required to use these newer algorithms.
For that reason, I was thinking of keeping everything as it is for those customers, but also adding extra instances to all the IPs and have them use a random port range on that VPN IP that'll forward to the new instance. That way, people wanting to connect using bleeding-edge/experimental crypto can do so by connecting to a range of ports (12500-12600, for example).
That'll also allow us to add new obfuscation features without having to buy extra IPs for all the servers.
Obfuscation that I've been looking into adding would be things like https://github.com/kevinxucs/udpmask or scramblesuit.
There's this thread stuck everywhere on the forum for 'praise to the team', but it's from 2015, and still only has 11 replies, most of which are not even praise, just weird. Look, it was a nice idea, but it's not working, so remove it, this is creepy.
Yea, that is pretty creepy. Thread removed.
Although Pattern_Juggled's rants on the more philosophical aspects of things are interesting, some of the more practical questions people have just need a short, concrete answer, at a place easy to find.
Even though he's no longer with the project, his posts do sometimes bring in people interested in whatever topic he's ranting about. So probably shouldn't outright delete his posts.
Once we finally get a wiki up with tutorials on connecting on different platforms, it should make things easier for people looking for simple questions.
Maybe throwing up a FAQ wouldn't be a bad idea too, so people don't have to wander around the forum looking for answers.
Come on, you guys have promise, having the tech know-how and the principles are most important for a VPN but this sucks. You guys badly need a mod/PR person/website maintainer if you want this operation to go anywhere. How many customers do you think you are missing this way? And the more customers use your servers the harder it is to identify them.
PR has always been at the bottom of our to-do list. I'm sure it has repelled some potential customers, but at the same time it's attracted some who were relieved that we weren't focusing all of our energy on marketing. Instead, most of our energy is focused on keeping the network running as smoothly and strongly as possible. Some people prefer that we're doing that instead of worrying about what our Alexa rank is.