Symantec Corporation, the world’s leading cyber security company, allows organizations, governments, and people to secure their most important data wherever it lives. More than 50 million people and families rely on Symantec’s Norton and LifeLock comprehensive digital safety platform to help protect their personal information, devices, home networks, and identities.
We asked TorGuard detailed questions about the company’s internal policies and standards, just as we did with five other top-performing services. TorGuard CEO Benjamin Van Pelt answered all our questions, as he has done for other outlets multiple times since the company launched in 2012. Though TorGuard’s answers weren’t as in-depth as some other companies’ responses, Van Pelt is a public figure who has been willing to talk about TorGuard’s operations at length. In 2013, ArsTechnica got a close look at TorGuard’s engineering and network management skills as the company rebuffed repeated attacks on its servers. Even though the company’s marketing is wrought with overreaching claims about being “anonymous”—an inaccurate boast that makes some experts cringe—the technical and operational standards of the company are focused on protecting customer privacy. In one interview with Freedom Hacker, Van Pelt notes that if there were problems on a server, such as someone using it for spamming, the company couldn’t restrict a single user. “Rules would be implemented in that specific server which would limit actions for everyone connected, not just one user. Since we have an obligation to provide fast, abuse free services, our team handles abuse reports per server – not per single user.”
HTTPS is a powerful tool that everyone should use because it helps keep sensitive browsing private at no extra cost to the people using it. But like most security standards, it has its own problems too. That little lock icon in your browser bar, which indicates the HTTPS connection, relies on a certificate “signed” by a recognized authority. But there are hundreds of such authorities, and as the EFF says, “the security of HTTPS is only as strong as the practices of the least trustworthy/competent CA [certificate authorities].” Plus, there have been plenty of news stories covering minor and even major vulnerabilities in the system. Some security professionals have worried about those least-competent authorities, spurring groups to improve on the certificate standards and prompting browsers to add warnings when you come across certificates and sites that don’t withstand scrutiny. So HTTPS is good—but like anything, it isn’t perfect.
CyberGhost is one of the better VPNs out there by virtue of having a number of helpful features, such as a killswitch, which will halt all traffic if the VPN tunnel is suspended for whatever reason, ad blockers and tracker blockers, and built-in shortcuts to sites and services which are either geo-locked or the likes of Twitter and Wikipedia, which are frequently censored by authoritarian goverments.
The second thing that happens is that the web application you're talking to does not get to see your IP address. Instead, it sees an IP address owned by the VPN service. This allows you some level of anonymous networking. This IP spoofing is also used to trick applications into thinking you're located in a different region, or even a different country than you really are located in. There are reasons (both illegal and legal) to do this. We'll discuss that in a bit.
— Mullvad has added iOS support for the new WireGuard VPN protocol. The service has also added an onion site at http://xcln5hkbriyklr6n.onion/ so that Tor users can get Mullvad accounts and download software completely anonymously. It is also urging users to upgrade their client software to at least version 2018.5, as earlier versions will not be supported after March 22, 2019.
Reddit users give Nord praise because it actually seems trustworthy, especially compared to other VPNs that may hand over information to the wrong people. Nord is also equipped with the ability to connect to a Double VPN, which encrypts your traffic twice for double the protection. One NordVPN fan on Reddit, Sacredkeep, even mentioned that NordVPN solved the problems that PureVPN and PIA gave them. Plus if you have any issues, Nord offers a 24/7 live chat. If you want a no frills, no worries situation, NordVPN is the simple, smooth operator that has your back. Get one month for $11.95, one year for $6.99/month, or two years for $3.99 per month.
Trust and transparency issues are the foremost concerns in choosing a great VPN, and if a service doesn’t have enough locations to be useful to you, all the security features won’t make a difference. But after those concerns have been satisfied, we recommend that most people use connections based on the OpenVPN protocol, because of security flaws and disadvantages in the PPTP and L2TP/IPsec protocols. (Experienced users may consider IKEv2, but because it has its own debated pros and cons, we ruled it out.) Though AES 128-bit encryption is fine for most purposes, we prefer services that default to the more-secure 256-bit encryption and still offer good performance.
While a VPN can aid privacy and anonymity, I wouldn’t recommend fomenting the next great political revolution by relying solely on a VPN. Some security experts argue that a commercial VPN is better than a free proxy such as the TOR network for political activity, but a VPN is only part of the solution. To become an internet phantom (or as close as you can realistically get to one), it takes a lot more than a $7 monthly subscription to a VPN.
Tunneling protocols can operate in a point-to-point network topology that would theoretically not be considered as a VPN, because a VPN by definition is expected to support arbitrary and changing sets of network nodes. But since most router implementations support a software-defined tunnel interface, customer-provisioned VPNs often are simply defined tunnels running conventional routing protocols.
A good VPN will have plenty of servers spread out over a large number of locations and countries, and you generally want a service that's based not in your own country or in a country that's good friends with the one you live in. Support for OpenVPN, the current standard for VPN protocols, is preferred, and you want to be able to connect multiple devices simultaneously.
We're not cryptography experts, so we can't verify all of the encryption claims providers make. Instead, we focus on the features provided. Bonus features like ad blocking, firewalls, and kill switches that disconnect you from the web if your VPN connection drops, go a long way toward keeping you safe. We also prefer providers that support OpenVPN, since it's a standard that's known for its speed and reliability. It's also, as the name implies, open source, meaning it benefits from many developers' eyes looking for potential problems.
Even if none of the above really sound right to you, you can still benefit from using a VPN. You should definitely use one when you travel or work on an untrusted network (read: a network you don’t own, manage, or trust who manages.) That means opening your laptop at the coffee shop and logging in to Facebook or using your phone’s Wi-Fi to check your email at the airport can all potentially put you at risk.
What that means in practice is that VPNs are fine for bypassing geo-blocks, for protecting your online banking and for keeping business communications free from interception. However, if you’re using the internet to fight repressive regimes or to do anything else that could attract the attention of the authorities where you live, a VPN is not a magic wand that’ll make you invisible.
VPNArea is one of the few providers that offer dedicated IP addresses in various countries around the world, as listed on their website. They also allow account sharing and permit six simultaneous connections per subscription. VPNArea continues to improve and remains an excellent choice for privacy-focused users. Check out their discount pricing for annual plans. [Learn more >]
In late November 2018, the Australian Parliament passed the Copyright Amendment to the Copyright Act. This amendment forces ISPs to block proxy and mirror sites—duplicates of censored torrent sites that show up after the original site is blocked—without the need for multiple court orders. Second, the new law will force search engines like Google to remove or demote links to infringing sites, as well as their proxies and mirrors.
Other features include a kill switch, which will shut down your Internet connection if you lose access to the VPN for whatever reason, and the ability to share encrypted connections as a secure wireless hotspot, if your router supports the feature. Windscribe also supports anonymous payment via Bitcoin and gift vouchers, and you don’t to provide an email address in order to sign up.
A VPN encrypts all of the Internet traffic between your computer and the VPN server, preventing anyone on your local network, or connection points along the way, from monitoring or modifying your traffic. Beyond the VPN server (in other words, on the rest of the way to whatever Internet server you’re connecting to), your traffic mixes with traffic from other people on the VPN and the rest of the Internet. Ideally, that makes your traffic traceable only to the VPN server, not to your home, office, or computer. You can read a more detailed explanation in our post about what a VPN is and when using one makes sense.
One of the most popular VPN services in the market, HideMyAss has a myriad of features that are sure to attract anyone who wants online anonymity. It uses a variety of servers that work with any operating system or mobile device. Aside from PPTP and OpenVPN protocols, the service supports L2TP, which is more difficult to block. Ideal for getting around censorship and firewalls.
However, network performance is another thing entirely. First, keep in mind that if you're using a VPN, you're probably using it at a public location. That Wi-Fi service is likely to range in performance somewhere between "meh" and unusable. So, just the fact that you're remotely working on a mediocre network will reduce performance. But then, if you connect to a VPN in a different country, the connection between countries is also likely to degrade network performance.