Proxy.sh thoughts?

[parityboy]

@OP

Well, the privacy policy is here, but this is the interesting part (after claiming that they are the only VPN provider that lets you know what's going on behind the scenes):

BY USING THIS WEBSITE AND/OR SERVICES, YOU AGREE THAT YOU CONSENT TO THIS PRIVACY POLICY AND ANY CHANGES HERETO IN THE FUTURE. YOU AGREE THAT PROXY.SH MAY MAKE CHANGES TO THIS PRIVACY POLICY AT ANY TIME WITHOUT ANY GIVEN NOTICE AT ITS DISCRETION.

So ummm....yeah.

[parityboy]

@OP

Ars ran this policy by Nate Cardozo, a staff attorney at the Electronic Frontier Foundation. (Full disclosure: he's a friend of the author and grew up in the same town.)

He called Proxy.sh’s policy the “single worst policy I’ve seen.”

“No exaggeration,” he said over chat. “Seriously. The very worst government requests are exactly the only ones that they'll honor.”

Source

[parityboy]

@OP

I can't tell, but even if it's genuine it wouldn't really matter.

[Pattern_Juggled]

Can you tell if the network status page is bullshit?

What we've done before is write a polling script to pull raw data from such status pages, dump them to text, and then plot the results to see if there's obvious issues with the distribution of point-pairs over time. Usually, there is.

That's one reason we moved to an uptime reporting framework that's entirely independent of our control, via our pingdom-powered uptime scoreboard. It limits the kind of customisation we can do to the presentation, admittedly, but the upside for everyone is that the stats presented there are genuine and can be validated as such given pingdom's independent collation of them.

Cheers,

~ pj

[Pattern_Juggled]

I'm curious but which file I've to give you to check if while connecting to their node it's giving out my real ip to them? I mean if they say there's no logging isn't this wrong..so?

It is impossible, to my knowledge in any case, to connect to a "VPN service" node/server without in doing so exposing one's physical/local IP address to that node in the process. If there's a clever way to provably obfuscate that information during connect, I'd love to study it more... and we've a few "blue sky" concepts in that space that are down-the-road research projects for "spare time" fiddling (ha).

Our solution to this has been to modify the source code of the openvpn instances running on our nodes, so the physical IP of connected members is not used as an internal-process tracking key... this removes not only logging, but the capability of logging, from our production infrastructure. Those mods are published in full in this forum thread: logs.cryptostorm.ch.

There's no way to confirm or disconfirm, via external means, whether a "VPN service" is keeping logs, or not. It comes down to trust - which basically sucks, in terms of technical solutions... but that's the reality of things. There's enough examples of "no-logging" services that are caught red-handed turning over logs to third parties to make such trust a hard thing to earn. We've earned that trust, we feel, over many years of service provisioning and a demonstrated record of never turning over the logs which we really don't retain and have never retained.

Often looking at Terms of Service will show a direct contradiction between a "no logging" claim on one marketing page, and in the ToS an admission that logs are actually maintained. This is so common that we've basically stopped flagging such situations, as it becomes essentially routine.

In 2007 when "no logging" was first pioneered by several folks who are now on the cryptostorm team, it was considered to be "illegal, irresponsible, and totally impractical." In the span of five years, it went from that to a standard marketing claim every company now makes. Which is sort of sad, to me anyhow. At the time we pioneered it, no-logging was profoundly revolutionary... mostly because we actually didn't (and don't) keep any logs.

Finally, of course, our move to token-based authentication means that even if we did keep logs (which we don't - and we can't, per source edits posted above), those logs don't connect back to real-life identity of human beings. Which is exactly the point, tbh.

Cheers,

~ pj