reminder that your IP is visible to every relay you connect to so consider running a vpn such as mullvad.net or ivpn.net, both accept bitcoin
Discussion
Mullvad is the way 🫡🤙🏼
Top 3 reasons to run a VPN?
Orbot (Tor VPN) in App Store
I'm using Mullvad and it works perfectly!
Feel like it would be good to have a security ‘best practices’ out there for noobs with nostr. Given that the space is so new there are a lot of frayed edges currently. I’m not sure everyone is aware of the potential risks at this stage (self included).
Agreed! And if irrevocable damage has been done... say without using a VPN during initial account creation, etc
Is running your own NOSTR node is also a potential vulnerability on privacy?
Internet experience is so iffy on VPNs. I use Proton & it’s just ok. Breaks a lot of apps on my phone
Nord has been working quite well for me for some time now.
What’s your current network setup? Can you share?
I am wondering is there any way to implement something on the client side. For example on iOS there is orbot and would be cool to see it’s integrated into client so the person can turn on it in the settings or it will be turned on by default.
I think im right in saying in IOS Orbot is either on or off, you cant choose the applications that use it. On Android you can and on Calyxos you can run Orbot and another VPN at the same time in different profiles. On some Android apps they run their own Tor instance so dont need Orbot, maybe some clients could so similar.
Does mullvad have LN support already? Asking for a friend...
Not natively but you can buy Mullvad vouchers with LN. https://vpn.sovereign.engineering
Mullvad only accepts onchain so if you want to buy using the lightning network, you can use this service:
mullvad accepts LN
I know everyone raves about mullvad and ivpn these days (and I'm sure they're great) but in over a decade airvpn has done nothing to convince me to look elsewhere. They've also been accepting bitcoin since at least 2012 or so.
Except they are probably most political Liberal marxist communist VPN out there and they fund such projects. Tranny manning, Zionist Assange.... And with VPN it's about trust.
Only those who allow paying with filthy cash shekels in envelope respect privacy and anonymity. It's not AirVPN. Anything digital is (((globalist))).
Bitcoin is fully traceable. That is not advantage.
That answers my question earlier on whether Tor-only relays would be beneficial. I assume the performance would suffer a lot though.
I was eyeing Mullvad for a while as an alternative to protonvpn because I really want to run wireguard on my router, but after listening to Marty Bent's podcast on IVPN and reading through their documentation and guides, I was really impressed. Gonna give them a try.
Do the common relay implementation s log IPs?
Try to connect to nostr relay servers in serious countries with jurisdiction You can lookup ip hostnames before connect... if you connect to relays in China or Rusia..... Chinese people said there are government owned relays... I don't believe it but everything could be....
#newmember #vpn #nostr #wss
Thank you for the reminder!
Would never use a service without #ProtonVPN.
Shameless shill: I've been running this setup for a month and am quite pleased with it. https://blog.lopp.net/how-to-protect-your-home-network-with-a-gigabit-vpn/
Now a VPS has all your traffic. Better to use a VPN with many users.
I'm far more confident that the VPS I set up myself is not logging traffic than I am that a black box potential honeypot is not logging traffic.
Did you create an account for that vps? Did you pay anonymously (BTC without coinjoin is not anon, did you send the tx from a bitcoin node linked to your IP, etc, etc)? A VPN like mullvad with no accounts and anonymous payment (Monero) is much better than a VPS you created an account for.
Yes, the VPS is paid for anonymously via prepaid debit card and is tied to an anonymous email account.
The primary problem in both situations is that the VPN endpoint knows your real origination IP address. With a dedicated VPS that isn't being shared with a large number of people doing naughty things, you're far less likely to draw scrutiny from authorities.
https://www.documentcloud.org/documents/22670252-1763_001 go to page 2 of this 21st September 2022 letter from Sen. Ron Wyden's office "The Defence Counterintelligence and Security Agency spent more than $2 million purchasing access to netflow data" from Team Cymru "Public contracting records that the Augury tool provides access to "petabytes" of network data"from 500 collection points worldwide" and "is updated with at least 100 billion new records each day" "
These endpoints ARE located between wherever you are located and your VPS.
Thanks for the guide, was easy to read. Hoping to be able to set up soon and run a node over it.
Needed a new vpn, went with mullvad because of this post. Thanks 🙏🏻
Your message is garnering a lot of interest.
Added to the https://member.cash/hot feed
Just mullvadised myself. Thnx for the tip-off.
I've been using Nordvpn but have recently started testing IVPN. It's sweet.
Huh, wut?
Think about it like this:
When you use twitter, you're connecting to 1 gigantic closed relay. Twitter, being that big relay, knows your IP.
When you use nostr, you connect to many open relays. Those relays know your IP.
One isn't necessarily riskier than the other, depending on your faith in Twitter. But both have risks. (this is true of using any website that is linked to some form of identity)
PV, Peter!🤣
Yup VPN every time, I'm in Germany now maybe USA later
or your own relay?
Connected via Tor 🧅
#[1]
Anyone mentioned Cryptostorm yet? It works where others don’t… for me anyways. Also they accept Bitcoin. Here’s a onion too!
http://stormwayszuh4juycoy4kwoww5gvcu2c4tdtpkup667pdwe4qenzwayd.onion/
Your IP is also visible to anyone because profile pics and media are downloaded directly and most clients pull those by default
ser plz, how to
#[0]
Even if it’s linked to a domain with ssl?
Friendly reminder that every relay you connect to can see your IP address.
#[0]
#plebchain
Nice point. Reminder to not spend your sats on paid vpn, and instead get cheap 10usd/year vps and setup your own vpn. Its too simple this days with automated scripts.
#[0]
reminder that your IP is visible to every relay you connect to so consider running a vpn such as mullvad.net or ivpn.net, both accept bitcoin