From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id DABE61381F3 for ; Mon, 27 May 2013 09:37:35 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 330CFE0B0E; Mon, 27 May 2013 09:37:24 +0000 (UTC) Received: from mail-wg0-f41.google.com (mail-wg0-f41.google.com [74.125.82.41]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id BB311E0AFC for ; Mon, 27 May 2013 09:37:22 +0000 (UTC) Received: by mail-wg0-f41.google.com with SMTP id k13so2024827wgh.4 for ; Mon, 27 May 2013 02:37:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:reply-to:to:subject:date:user-agent:references:in-reply-to :mime-version:content-type:content-transfer-encoding:message-id; bh=O5c3qiV7EzYZeB3gSvaHOMCZ/lB9qZWwCNTVOEHDUDA=; b=nhZsikZm3pHi/LlemsrFrKsNlu7EChsAXpXzcTMtiIzUSYKyzzuvKgRh3vQVkFYfpD 8Diu5xcWyWywq+O1nonnl9TVtORnA6nR2plvH5YolFb9u4fCRyyYQZt/sWoVecmWAtph 2s9pZEKxCBSMhCA2pZqVa7zwgZWstfTgixwXQUmpUamuoc7b+9pp2Yxlr6b3kKmGWLeF UYJzgD9mWAcSWPFhPg6r23cyQzn1wRCfqD2NsWlHChvl3XSI0ZaTYmaynYCsEDB2I8qG SswKD5XglUE2epeiwPav9lyN2pW0yUlhaq8lBm4aXyvWNL5wu9XyhVB1yzruklrWNAkv S4Tw== X-Received: by 10.180.149.200 with SMTP id uc8mr7699271wib.3.1369647441167; Mon, 27 May 2013 02:37:21 -0700 (PDT) Received: from dell_xps.localnet (230.3.169.217.in-addr.arpa. [217.169.3.230]) by mx.google.com with ESMTPSA id b11sm16010263wiv.10.2013.05.27.02.37.19 for (version=TLSv1.2 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 27 May 2013 02:37:20 -0700 (PDT) From: Mick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] A free VPN server Date: Mon, 27 May 2013 10:36:55 +0100 User-Agent: KMail/1.13.7 (Linux/3.8.13-gentoo; KDE/4.10.2; x86_64; ; ) References: In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart2618175.Z4pOeVIkKp"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <201305271037.09523.michaelkintzios@gmail.com> X-Archives-Salt: 611fd3d3-02e2-406f-901d-d45fcabdfa93 X-Archives-Hash: f813448efff0f4e7cc4b17f4cb0ecce0 --nextPart2618175.Z4pOeVIkKp Content-Type: Text/Plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable On Monday 27 May 2013 02:43:08 walt wrote: > This company: >=20 > https://proxpn.com >=20 > sponsors my all-time-favorite podcast, which I heartily commend to you: >=20 > http://twit.tv/show/security-now > (the audio podcast is what I suggest, as the video adds very little) >=20 > Anyway, you can get a free account from proxpn.com by giving them a > working email address (no credit card or any other personal info). >=20 > Here is what I used to get it working on gentoo: >=20 > net-misc/networkmanager > net-misc/networkmanager-pptp >=20 > and I had to add these to my kernel config: >=20 > CONFIG_PPP > CONFIG_PPP_MPPE > CONFIG_PPP_ASYNC >=20 > The name of the server to give networkmanager is pptp.proxpn.com >=20 > I confess I have no idea how to do all of this without networkmanager, > but I'd like to hear from you networking nerds out there who know more > about this stuff than I do. Hi Walt, PPPTP uses a rather weak proprietary RC4 based encryption for tunnels in=20 old(er) MSWindows machines. At least make sure that it uses 128bit key=20 encryption, or better still drop this completely in favour of the OpenVPN=20 method which uses SSL certificates. PS. It would be better if these guys offered a more serious VPN=20 implementation, like IPSec VPN (with either IKEv1 or IKEv2). If they won't,= I =20 would suggest you look for a provider that does. PPS. I see they are peddling privacy from governments' snooping efforts whi= ch=20 are fast being enshrined in law around the world, but can you really trust= =20 them? What happens when the boys in black/blue knock on their door and ask= to=20 have access to their servers? Heck, we all saw what happened with Kim Dotc= om=20 in New Zealand, when the US media complex decided he was taking too big a=20 slice of their profits. Hosting servers in a foreign jurisdiction offers n= o=20 insurance, when money interests are more powerful than governments. =2D-=20 Regards, Mick --nextPart2618175.Z4pOeVIkKp Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (GNU/Linux) iQEcBAABAgAGBQJRoylFAAoJELAdA+zwE4YeVUIH/iwoJbZWpNzM8jIeP3dKNNhN B7QmGIhL57i2c1IesHxMq2Ubn8jF9IqkgOAtDb3Bc36vcXxwzFgnjZ1mbnggLti2 fJdJHqh4rufgFjYfPNLfoJcT4Eo61UADbJ8TK6yzm9LztQS3Qn1g7UIUC6S9rF4/ kBj2YYq3XkZewxvMDinonBP/wQpnEcmJ2nuiEDZwZkB3/vGh1W2603Hs+djcBEe6 wxZNMX4MWyzmaMeRDG553iVOzZgjYWEnWrJgUhWpbJhtIm3SrX39+uhFbESTTiRi DcTCtqU/KuurdPOR3BIOQag992okBGa3ATxqMGNpa4zhHGlP4kg7ANElX9T/sCY= =RsnQ -----END PGP SIGNATURE----- --nextPart2618175.Z4pOeVIkKp--