628
top 50 comments
sorted by: hot top controversial new old
[-] Danc4498@lemmy.ml 95 points 1 year ago

Last time I looked at VPNs, mullvad seemed highly recommended for privacy and security. Sounds like it may still be the case.

[-] CrabAndBroom@lemmy.ml 82 points 1 year ago

I also like that you don't have to give them any private info at all to make an account. You can just send crypto and they'll give you an account code and that's it, you don't even need an email address.

I haven't tried it but apparently you can even mail them cash. You get a payment token and just send cash in an envelope and they'll activate it whenever the money shows up!

I personally use this and it works great. Takes like a week to arrive (sending from europe).

[-] Im_old@lemmy.world 13 points 1 year ago

you can also buy physical tokens (scratch cards with activation codes) in a shop, with cash

[-] PeachMan@lemmy.one 23 points 1 year ago

It's basically the gold standard, audited and proven. I hear good things about IVPN as well.

[-] player2@lemmy.dbzer0.com 4 points 1 year ago

Be aware that Mullvad recently removed support for port forwarding if that matters to you. They're no longer a preferred option for torrents for that reason. Other than that I enjoy using their service.

[-] nucleative@lemmy.world 61 points 1 year ago

Longtime Mullvad user, always been happy. But when Mullvad was still a small service it was unusual to have any problems when browsing the web with their IPs.

Recently, many services can detect you're on a VPN when using Mullvad and block or ban you, which means they've become successful enough that there are countrer-VPN databases including all of their IPs.

[-] punkisundead@slrpnk.net 22 points 1 year ago

Soooooo many captchas. And some websites just pretend to have weird errors which stop the moment I shut off the VPN

[-] Wumbologist@lemmy.world 17 points 1 year ago

It's the same with Nord. I have to pause my VPN any time I want to access Fextralife wikis

[-] Blackmist@feddit.uk 22 points 1 year ago

Ah, Fextralife. For when you want the top half of the screen taken up by a video advert, and the bottom half taken by a giant consent form.

The day we strayed from GameFAQs was a dark day indeed.

[-] Wumbologist@lemmy.world 3 points 1 year ago

It's pretty awful but it's always the first search result for anything souls related. It's bearable with an adblocker though

[-] GenderNeutralBro@lemmy.sdf.org 8 points 1 year ago

This is Bing Chat's killer feature. Search for a specific game question and it'll just spit out the answer with no bullshit.

[-] PraiseTheSoup@lemm.ee 9 points 1 year ago

Pretty sure fextra just rips all their content from other wikis anyway, at least this was definitely my experience in the past. Just try scrolling past the first link in your search engine.

[-] Pyroglyph@lemmy.world 5 points 1 year ago

There's a browser extension that suggests (and optionally redirects to) better wikis when your search results include a Fandom/Fextralife link. I think it's called Indie Wiki Buddy.

load more comments (2 replies)
[-] Asudox@lemmy.world 12 points 1 year ago

Should I be happy about that or not.

[-] prole@sh.itjust.works 5 points 1 year ago

I've just come to accept that constant captchas are a fact of life for browsing on a VPN. Cost of doing business. Worth it for the privacy though imo (VPNs in general, I haven't used Mullvad).

[-] nucleative@lemmy.world 2 points 1 year ago

Some are definitely better than others. I've used new VPN services that get you through every checkpoint just like a home IP address. And some that, as you mention, throw up every captcha known to man.

[-] Kekzkrieger@feddit.de 4 points 1 year ago

yeah man prime detects me all the time... rly sad

[-] JimmyCryptoMan213@lemmy.world 57 points 1 year ago

I wish Mullvad and IVPN kept port forwarding or find a way to bring it back without having too much legal trouble.

[-] eruchitanda@lemmy.world 21 points 1 year ago

People really abused the option. That's why we can't have nice things :/

[-] TWeaK@lemm.ee 51 points 1 year ago

The result is that the operating system that we boot, prior to being deployed weighs in at just over 200MB. When servers are rebooted or provisioned for the first time, we can be safe in the knowledge that we get a freshly built kernel, no traces of any log files, and a fully patched OS.

But can it run Crysis?

[-] r00ty@kbin.life 54 points 1 year ago

Yes, but you lose your save game every reboot.

[-] TheOneAndOnlyDeath@feddit.nl 14 points 1 year ago

Great for speedrunning then!

[-] jeena@jemmy.jeena.net 19 points 1 year ago

Just for my understanding when they boot such a server, where does it get it's operating system from? Over the network from a different computer which has a hard drive or some read only ROM on the server or what?

[-] UFO64@lemmy.world 36 points 1 year ago

This can be handled a few different ways.

  • You can boot from a HDD and then just not ever write data back to it. This would be the most trivial solution, and it's something people do with their Pi's a lot to avoid SD card failure.
  • You could network boot, pull the OS from the network at startup. Fun fact, this is how some rockets fly! No onboard persistent storage needed. Everything boots into and runs from ram the whole 10 ish minutes of operation.
  • You COULD do a ROM as you suggested, but that's a LOT of ROM. Seems odd to do imho.
[-] uis@lemmy.world 5 points 1 year ago

16MiB is enough to hold entire Linux distro. Example: OpenWRT

load more comments (1 replies)
[-] Kazumara@feddit.de 17 points 1 year ago* (last edited 1 year ago)

Click the first link in the article, in the older post they talk about their stboot bootloader. It does what you suspect, loads the OS image from a different computer which has signed base images.

[-] AlecSadler@sh.itjust.works 19 points 1 year ago* (last edited 1 year ago)

Anyone pro-Mullvad that can explain to me how it's better than PIA?

To my knowledge, which may be wrong, PIA has faster speeds and is also entirely RAM-based.

That said...I'd gladly switch if that's untrue and Mullvad is better. On the outset, it sounds like Mullvad triggers search engine captchas less, which would be a nice win.

edit: Well, you all convinced me. Made the switch.

[-] Virual@lemmy.dbzer0.com 58 points 1 year ago* (last edited 1 year ago)

PIA and Mullvad should have equal speeds because they both have 10gbps servers and wireguard. Both PIA and Mullvad use ram-only servers exclusively. As for search engine captchas, I never get them with Mullvad. The main issue with PIA is that they were bought by a questionable company that previously developed adware. You can read about that here. Personally, I would never use a privacy tool that is owned by an ad company, even if they claim to have changed. I used them up until the acquisition, then switched and have been extremely happy with Mullvad.

[-] serratur@lemmy.wtf 13 points 1 year ago

PIA is also a US based company

[-] postmateDumbass@lemmy.world 3 points 1 year ago

Just a bad juju acronymn.

Pain in the ass, CIA.

[-] AlecSadler@sh.itjust.works 11 points 1 year ago

You're awesome. Thank you! Appreciate the info and response. I'll give Mullvad a throw.

[-] scarabic@lemmy.world 5 points 1 year ago

I used PIA for years and dropped them over this. Am now on Mullvad. So far everything’s great.

load more comments (2 replies)
[-] punkisundead@slrpnk.net 12 points 1 year ago

You can send Mullvad cash as payment method

[-] SuperSaiyanSwag@lemmy.zip 17 points 1 year ago

Can someone explain to me what this means? I’m technologically inept when it comes to privacy, slowly getting better day-by-day thanks to Lemmy.

[-] lustrum@sh.itjust.works 57 points 1 year ago

What does “without any disks in use” mean?

  • If the computer is powered off, moved or confiscated, there is no data to retrieve.
  • We get the operational benefits of having fewer breakable parts. Disks are among the components that break often. Therefore, switching away from them makes our infrastructure more reliable.
  • The operational tasks of setting up and upgrading package versions on servers become faster and easier.
  • Running the system in RAM does not prevent the possibility of logging. It does however minimise the risk of accidentally storing something that can later be retrieved.
    https://mullvad.net/en/blog/2022/1/12/diskless-infrastructure-beta-system-transparency-stboot/
[-] KairuByte@lemmy.dbzer0.com 29 points 1 year ago

While mostly true, there are ways to preserve ram if the device is confiscated.

Your local PD likely couldn’t pull it off, but if one of the larger abbreviation agencies were to get involved, data on RAM isn’t a huge hurdle. Assuming no one flips the power switch, at least.

[-] reluctantpornaccount@reddthat.com 19 points 1 year ago

Yeah, freezing and dumping RAM is a well known attack, even happening at some airports with laptops. But it still requires very recently powered ram, basically still in operation before extraction. It's a big step toward security at least.

[-] lustrum@sh.itjust.works 13 points 1 year ago* (last edited 1 year ago)

I guess it's going to stop any standard agencies with a warrant. Confiscating the machine for it to sit in a warehouse until some forensic techs get their hands on it.

[-] jarfil@lemmy.world 3 points 1 year ago

There are devices that allow moving and confiscating computers without powering them off.

The rest are true.

[-] DoomBot5@lemmy.world 4 points 1 year ago

That's assuming those computers weren't already powered off first.

[-] jarfil@lemmy.world 3 points 1 year ago

Sure, but how often does that happen to servers running 24/7? They'd have to set up some sort of dead man's switch, movement sensors, or something. It's unlikely they'd get a day's notice that the servers are going to be confiscated for forensic analysis.

[-] DoomBot5@lemmy.world 2 points 1 year ago

How long do you think it takes to broadcast a network wide shutdown command over the management network?

[-] jarfil@lemmy.world 2 points 1 year ago

How long do you think would you have? Also, any manual action on your part would be obstruction, while an automated system could be defended as anti-theft protection.

[-] JimmyCryptoMan213@lemmy.world 13 points 1 year ago* (last edited 1 year ago)

I hope IVPN and others starts using RAM only servers in the future.

[-] ryannathans@aussie.zone 2 points 1 year ago* (last edited 1 year ago)

PIA have been doing this for years, are there any others doing this already?

load more comments (1 replies)
load more comments
view more: next ›
this post was submitted on 20 Sep 2023
628 points (98.8% liked)

Technology

60130 readers
2767 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS