produs 1 Posted ... Thoughts??? https://mobile.twitter.com/mkultrasperg/status/849129316063469572 Quote Share this post Link to post
greenclaydog 6 Posted ... Thoughts??? https://mobile.twitter.com/mkultrasperg/status/849129316063469572Staff, can you confirm this? Quote Share this post Link to post
Staff 10014 Posted ... Hello! @produsOur service is not based on IPsec. This decision was taken in 2010 (even before we opened Air) because the original co-founders did not like very much two facts: IPsec running in kernel space, and important contributions by NSA to some of the development stages. @AgentSmithThe tweet just after the one you linked mentions incorrectly "OpenVPN". From the document, on the contrary, you can see that it refers to IPsec, as correctly fixed in the subsequent tweet. Just a "momentary lapse of reason" by the author of the twit, probably. Kind regards 1 produs reacted to this Quote Share this post Link to post
zhang888 1066 Posted ... On a sidenote, QuarksLab completed their OpenVPN 2.4 audit and will submit the results on April 7th.There should be a correcting release (2.4.2) with fixes for all the found issues.We might probably see some class of bugs in parsers (like the recent Cloudflare proxy leak issue), but it's too early to speculate. Quote Hide zhang888's signature Hide all signatures Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees. Share this post Link to post
greenclaydog 6 Posted ... Hello! @produsOur service is not based on IPsec. This decision was taken in 2010 (even before we opened Air) because the original co-founders did not like very much two facts: IPsec running in kernel space, and important contributions by NSA to some of the development stages. @AgentSmithThe tweet just after the one you linked mentions incorrectly "OpenVPN". From the document, on the contrary, you can see that it refers to IPsec, as correctly fixed in the subsequent tweet. Just a "momentary lapse of reason" by the author of the twit, probably. Kind regards Strange, several tweets that follow the first one directly specify OpenVPN. Did he correct that somewhere? because i cannot see it. Anyways, even if OpenVPN isn't the target, (which unless the twitter user was incorrectly naming OpenVPN, it is true) Isn't this a huge deal for the shitload of all people still using IPsec VPN services? Believe it or not there are still a ton of them that are using less known services or mobile apps that exclusively support IPsec. Quote Share this post Link to post
Staff 10014 Posted ... Strange, several tweets that follow the first one directly specify OpenVPN. Did he correct that somewhere? because i cannot see it. Yes, for each tweet he/she attached the correct piece of text (as an image, so you might need some effort to read it properly) in which you can see that OpenVPN is unrelated. Anyways, even if OpenVPN isn't the target, Isn't this a huge deal for the shitload of all people still using IPsec VPN services? Believe it or not there are still a ton of them that are using less known services or mobile apps that exclusively support IPsec. It can be, sure, but then this is not a thread for "General & Suggestions" forum, which is aimed to general topics and suggestions for AirVPN service, not other ones! Feel free to move to "Off-topic" for any IPsec related issue. Kind regards Quote Share this post Link to post
greenclaydog 6 Posted ... Strange, several tweets that follow the first one directly specify OpenVPN. Did he correct that somewhere? because i cannot see it. Yes, for each tweet he/she attached the correct piece of text (as an image, so you might need some effort to read it properly) in which you can see that OpenVPN is unrelated. Anyways, even if OpenVPN isn't the target, Isn't this a huge deal for the shitload of all people still using IPsec VPN services? Believe it or not there are still a ton of them that are using less known services or mobile apps that exclusively support IPsec.It can be, sure, but then this is not a thread for "General & Suggestions" forum, which is aimed to general topics and suggestions for AirVPN service, not other ones! Feel free to move to "Off-topic" for any IPsec related issue. Kind regardsThanks for clearing that up. I'll see about starting a separate thread elsewhere, although I feel many are already aware of the issues present in IPsec. Quote Share this post Link to post
tehhellhound 8 Posted ... On a loosely related note, many cell carrier Wi-Fi calling implementations, including T-Mobile(my carrier) use an IPSEC VPN, so I can only imagine how useful this would be for them to intercept conversations. I have this setup on my router though, so that IPSEC tunnel gets tunneled to Canada over OpenVPN, so take that, NSA! 1 Ricnvolved1956 reacted to this Quote Share this post Link to post