I think you can also get the raw wireguard config files for ProtonVPN: https://protonvpn.com/support/wireguard-configurations/

Be aware, at least Nord clearly does something different with their client than with the OpenVPN files they provide ( https://news.ycombinator.com/item?id=21664692 ). When I dug into this, I found similar cases with other major VPN providers, but my notes are sufficiently out of date, they shouldn't be trusted anymore.

Sometimes the differences are subtle, sometimes they're rather complex like this case. Personally, sketchy stuff like this is why I've moved all of my VPN use to a personal cloud instance running WireGuard.

Been using protonmail on arch for years, you have to setup the configs a tad more manually and do some editing (I forget now); definitely doable and protonmail lets you download the configs (which work out of the box depending what you use).

I've read some articles online, but I still haven't managed to understand the hype around wireguard. It's lighter than OpenVPN, but has more obscure primitives? Doesn't seem like a great trade off...

As an additional data point, I've been using Mullvad as a long-running VPN for a while now (hint: Linux ISOs) and it has been working like a charm.

"Global payments for the internet"

I was intrigued...

Then

"currently the Strike app is only available in the United States*, El Salvador, and Argentina"

You can literally just mail them cash if you want absolute anonymity.

Careful! I used BTC and the processing time was absurdly long.

I just paid using Bitcoin Cash (BCH), low fees and simple to integrate ;)

Yes and they even make double hopping easy. Many other VPNs don't like this, presumably because they have to eat 3 times the traffic.

Your blanket statement isn't true. OVPN for instance has gone to court to protect its data: https://www.ovpn.com/en/blog/ovpn-wins-court-order

They are a very good alternative among others.

Absolutely no way to know they are good and other is bad. The entire VPN industry is “trust us bro”. Which works until it doesn’t.

Why do the other popular VPNs not have any integrity left?

What about ovpn.com?

AirVPN seems to be quite good, and ethical.

How about ivpn or perfect privacy?

Protonvpn?

https://www.ivpn.net/ also generates a random userid and also accepts cash in the mail (only for large purchases unfortunately). I wasn't able to get mullvad's multihop to work on Android, but iVPN Pro does the trick. iVPN also has a nice server status page that helps you optimize for speed (low load server) or anonymity (high load server) as appropriate: https://www.ivpn.net/status/ They have a weird "anti-marketing" homepage which devotes almost equal space to explaining why you should not buy their product :-P

Perfect Privacy accepts a gift card (more convenient than mailed cash IMO) and has a nifty "neurorouting" feature which aims to be better than standard multihop (claims of speed, at least, I can attest to). They do ask for an email address, sadly, unlike iVPN/Mullvad. Also I just saw this and it looks a bit worrisome https://www.security.org/privacy-guide/perfect-privacy/

Both iVPN and PP let you block various trackers / MANGA corps at the network level.

I like Mullvad but it seems good to support a diversity of providers. Curious if anyone has any dirt on either of those two, or if they can make more recommendations.

> You can mail them cash with account info and they'll set you up

If I wanted to self-host a VPN, I would still need to pay for a cloud provider.

Is there an equivalent cash (snail mail) offering for hosting?

Mullvad accepts cash as well. In what way are they behind?

Aren't OTT streaming services notorious for blocking VPN IP ranges? How is Mullvad getting around those? Surely, they don't buy / lease / steal residential IP addresses [0]?

[0] https://news.ycombinator.com/item?id=9614993

OH MY GOD. I've had to stop watching F1 in Australia because the only app that has licensing is like $27.50 a month and I don't love it that much.

This is a fantastic idea! Thanks mate!

I tried the Android TV App to watch HBO max though (in a different country vs the subscription's host country) and the HBO app did not even load (not even the splash screen). I had no such problems with some other VPN providers (although to be frank some other VPN providers fail in a different way).

Interestingly I tried to watch HBO Max (from a different country) using Mullvad but it failed me. While some other VPN providers succeeded. So it seems it's kind of a hit and miss what works.

They only have a monthly pricing option I believe

https://mullvad.net/en/pricing/

Presumably there are details linking together payments coming from Paypal and the account number. And obviously there is a link between account number and forwarded port. So following with that, you'd be able to make the connection between the account number and Paypal account, which is definitely not private nor even pretending to protect your privacy.

I normally don't use VPNs, so please correct me if I am wrong.

I think from a law enforcement/accountability standpoint, if an "actor" is accused of wrongdoing while using Mullvad's port forwarding service, Mullvad might have some evidence linking the "actor" to an actual identity, since they have the payment information. Depending on the laws of whatever territories, Mullvad may be compelled to leak that info to a judge. Without that information, then there's no information they can ever be forced to leak.

I think saying subscriptions are a dark pattern is going a bit far. In the case where you're offering an ongoing service that requires a cost to service, a subscription model is completely appropriate and in the best interest of both the subscriber and the issuer.

For sure there's some abuse of the model where you're selling something that should be a one-time item, but that's not the case here, and Mullvad is providing an ongoing service (and still billing by month / year / etc. for the service, just without automatic renewals).

I don't think so. Us privacy and control freaks abhor subscriptions, the mainstream just shrugs and pays what they're told to pay. I can even see them adopting rental models for a lot of stuff we purchase outright now (the "you will own nothing and you will be happy" great reset promoted by the world economic forum). I think this is pretty exploitative but I'm pretty sure I am in a minority. Obviously big business loves this because they have to do almost nothing and still get guaranteed income.

But to me their arguments sound too much like blackmail "With this model there is incentive for us to make longer-lasting products which is good for the environment". Well, sure but if you actually cared about the environment instead of money you'd be doing that right now. Why do we have to pay them more for less in order for them to do this?

To me this really sounds like a "pay us what we want or we'll mess up this environment of yours even more" extortion scheme.

The older generation is more against it but they tend to not trust tech very much anyway. They're not the ones buying a new phone every year, they use it for many years and even get it fixed when it breaks.

Subscriptions aren't (in general terms) a dark pattern.

Part of the advantage of the recurring subscription model is having predictable revenue every month due to it being recurring. And many businesses count on that "gym membership" effect, where people who don't use a service also don't take the time to cancel it for a while.

Not really. See the trial against the founders of The Pirate Bay for example, and the controversies surrounding it. Also, the FRA surveillance. Also, according to the ISP Bahnhof, the police at least used to submit lots of data requests without a court order and for non-serious crimes.

AIUI, Bahnhof and other VPN providers stay in the clear by avoiding storage of data in the first place. They can be compelled to hand over any data they have, but not to log any additional data. (ISPs etc are forced to log more data IIRC.)

At least there's nothing like the Australian laws for forcing and gagging developers.

I'm not really trying to be pedantic for giggles.. perhaps I just think it's sad that 99% of ISPs are considered your privacy enemy and on top of that I don't consider VPNs a scalable solution to the problem at large so I'm more entertaining the "why is this the de facto solution" question in the "does it scale to society" solution space. It starts to look more like a social problem/solution than a technology problem/solution. That's more what this is about. If everyone used a VPN we'd really be in the same scenario we are today because to support that infrastructure you'd need exit nodes in every city and boom there goes your location advantage.

I don't disagree that centralized services are also bad for the internet, but that's not a rebuttal to my point (also, what is a VPN service if not a "centralized ISP with different egress options"). A VPN does not add a layer of privacy. That's a misunderstanding of the concept and unfortunately a popular one even among security folks and even more-so among security marketing folks. A VPN allows you to effectively choose a different ISP. You are not private from Mullvad. You just have their promise that they're better and more transparent than your alternatives and that they won't sell your DNS queries and connection logs to advertisers. It's not bad to align with an ISP that shares your values, but it's not privacy outright.

> And if you want you can even send them cash in an envelope. Or monero or whatever.

So why not only allow payments in privacy perfect currency if they're so concerned about privacy?

> They accept cash and at least some other privacy preserving payment methods already.

So why even allow "traditional" KYC-ridden payments at all?

> Bit of a contradiction there. It adds friction to at least some attacks against your privacy. That's better privacy.

The nuance is that you're just moving the problem. You're not private from Mullvad. You're just trading one ISP for a different one. I could have phrased it better in my initial comment so as not to suggest a contradiction. Think of it this way, if Mullvad was your ISP, would you still tell someone to get a VPN? You have to trust someone not to snoop on your DNS queries and connections. All adding a VPN does is give you more freedom to choose who to trust, which is not bad in its own right. It's just not technically privacy manifest.

They break the practical solutions to content distribution and delivery that we've deployed. If everyone used a VPN, CDNs and caching would be rendered ineffective. Generally, VPN consumers use more bandwidth than necessary to acquire the same content which does impact the network.

My ISP accepts cash payments in an envelope with an account number written on it. They probably require an address during signup so they can service the physical lines but just pointing out that paying is cash is not exclusive to Mullvad.

Browser and system configuration. Turn off tracking cookies, advertiser IDs, block tracking links/assets. I use a municipal ISP that doesn't sell my info. Stuff like that. But really I know that I'm not private from the services I access so I try to gravitate towards services that I trust with my personal information. My goal is not to make sure nothing ever lands in my advertising profile. It's to make sure that whatever my profile is looks so unlike my interests that it becomes a useless waste of money to build it.