LZ1

F-Secure underscores in almost every test, how can you even recommend it?
A troll researcher that likes to blog doesn't make a product better in terms of detection.
 
You should rely on real life examples and tests, for example follow top malware trends,
throw the sample or hash on VirusTotal and see the usual top 10 that are somewhat
post-effective. F-Secure is not even in top 20, recommending it as a standalone AV
would be irresponsible. Might fit in an multi engine scanner like VT but not more.

Hello !
 
What surprises me most is that there's still no server called "Cloud" ^^.
Then we could make endless bad tech jokes! Just think of the community interaction!
 
Someone: Where's the server?
Staff: It's in the Cloud !!!
 
------
 
Staff: Announcing our new server: Cloud. Now that's cloud-computing guys!
 
------
 
*Server maintenance on Cloud server*
Staff: Cloudy with a chance of rain!
 
-----
 
But hey, I'm just trying to inject some humor into your daily lives. I mean, a Cloud server would literally be a breath of fresh Air!!!
 

You are doing a great job LZ1, I'm sure giganerd would not mind if you copied his how to link

More servers is always a good idea but remember the NSA taps fibers right at the source. Sweden would give them open access to their territory for this purpose and that means they could intercept data on the way to Iceland very easily. We really need some servers in South America and maybe even Africa, far away from the prying of five eyes.

I probably typed it wrong. My primary gaming PC still has issues with Steam (I have to disconnect from AirVPN in order to get any speeds above 100kB/s) but my gaming laptop is fine. It is far from a big issue, just an inconvenience. Overall, the AirVPN service has been amazing.

Zhang888, thanks, you were right. I went into my phone's settings and manually put in 10.4.0.1 in the "DNS 1" block. This seems to have fixed the problem! Thanks!
 
So now that everything seems to be working, is there any other tests I can/should run to make sure it's actually doing what it should? Or is the IP Leak website test all I need to do?

Thanks to everyone that helped guide me in the right direction, it's much appreciated. I noticed the one useless/jerk comment was removed from the thread, and I'm glad to see the majority of people on this board are actually willing to help, so thank you very much! As for the 30mbps limit, I'm not too worried about that since my ISP caps me at 25mbps, but good to know for the future if a better ISP ever starts offering service in my area... Looks like I'll be updating my firmware tonight and trying out this policy-based routing! Thanks!

They can.
The higher danger is usually with bigger brands that have many distribution platforms.
For example, it is really hard for popular P2P or music apps to verify their integrity with
their potential users, since any *torrent client downloaded from some 3d party location
can be bundled with adware/malware, just like happened before with CNET and SourceForge.
AirVPN however has only 2 official locations, the SSL website and Github source tree.
 
This is why you have to download it only from https://airvpn.org/windows or from Github,
and then verify the hashes.
Any other builds should be considered untrusted.

This requires to obtain a special "Code signing" certificate from a trusted Certificate Authority (CA).
While most trusted software packages want to have this kind of a signature for their installer
packages, the fact that AirVPN is providing a free, open-source client actually makes this a little
redundant.
 
Let me try to explain why.
The code signing certificates can be potentially issued to anyone claiming to have a brand. There
are many examples where a person can obtain a certificate for an entity he doesn't control, just for
example, if you now register a domain such as AirVPN.nl, and would like to have a code signing
certificate for this entity, you will most likely be granted to have it for something like ~$100/year.
 
So you have to check even signed executables very carefully, they don't mean anything except
that the publisher was partially verified by a CA. Just like you cannot trust a site with SSL green
"lock" not to be malicious, for the matter. This is only a small part of the bigger picture.
A Windows "code signing" certificate is relatively easy to obtain (unlike the Windows Driver
signing certificates that are much harder and require physical contact with Microsoft).
 
There are many examples of Adware programs that do have a code-signature, just to name
a few, anything you download from these shady "Registry/PC cleaning" websites will be signed,
usually by some east-European or Asian company, like one of the hundreds examples:
https://forums.malwarebytes.org/topic/165518-adware-digitally-signed/
 
What you have to do, if you want to maintain security, is to verify the hashes of the AirVPN client
you are downloading, and the hashes are available just near the download button, you can't miss it.
This will not only ensure that you download the trusted, unmodified installer, it will also mean that
every time you upgrade it you can still rely on the new hashes that are published by the authors.
The way software is distributed in other platforms, such as *nix, already have this imlementation
for years, and usually the package manager does the signature verification for you transparently.
This process ensures integrity on much higher levels than just checking the issuer brand/email.
 
So, to summarize, the code signing certificate only adds a cosmetic "trust", where the real trust should
be based on what you download, from which origin, and the best of course is - is this software really
open source and can be built on your own system, producing the same executable? (deterministic builds).

Hello!

Thank you for the nice discussion.


Absolutely not: Air has been designed exactly with the purpose to leave the option to customers to NOT allow the admins to know the identity from the login credentials. It is well explained in the link given in the previous post: if you buy a code with Bitcoin from an independent reseller and you connect over TOR, there's no way in this world that Air admins can get to know your identity.


Unfortunately not. If you use only TOR, you anyway need to trust:
- that the exit node is not malicious or compromised;
- that your adversary does not control the relevant portion of the TOR network you connect to. Control over the TOR network is possible by an adversary with enough power (for example a well determined government which controls the ISPs and the border routers).

Bypassing the trust on one single party requires partition of trust. So, with VPN over TOR you defeat a malicious exit node and an adversary which has the power to control your line AND (the Air server you connect to OR the relevant portion of the TOR network). With TOR over VPN, you can't defeat this type of adversary and you don't defeat a malicious exit node.

Kind regards

Try resetting your home page to airvpn.org, and if that fails, then you probably have one or more trojans messing things up for you.
 
Consider a reinstall of Chrome, or even better a replacement of Firefox instead of Chrome. Go here to make a profile for Firefox that will get rid of all the privacy and security junk you do not want.
Firefox Profilemaker
 
If you stick with Chrome, I cannot really help you since I have never tried it.

Hello,
 
AirVPN is in that 2.94% of VPNs put in "A" (best) grade and PCI DSS compliant (according to their own tool at least).
 
Kind regards

I use it for everything but I don't use social media.
I'm a customer of Telenet (https://www2.telenet.be/nl/) which is the largest provider of cable broadband services in Belgium. But since 2007, an American company, Liberty Global own a 57.8% stake in Telenet (correct me if i'm wrong). Shorly after i started with VPN. And i'm a bit allergic concerning USA companies. U know, patriot act and other shit.
I'm shure my isp logs metadata.  So i feel save behind my AirVPN connection.
 
@ AN566, love your signature  

The United States is an enemy of the Internet. More and more our technology and communications are captured illegaly and stored for many years and then used against us in court. The government seems to sincerely believe that it owns the Internet and regulary hacks into foreign servers to retrieve data, seizes domain names, etc. and any citizen who can be considered a hacker under broad laws will be thrown in prison.
 
My warning as a US citizen is to watch out, encrypt, keep everything secure, keep data offshore, and avoid any US-influenced entities such as ICANN.
 
Thank you AirVPN for the great continued service. I've been using multiple VPN connections almost constantly for the past year everywhere and as far as I can see that will continue