Dammit..... I use Proton Suite.

I thought Cloudflare was just an HTTP forwarder, no?

When I connect to ProtonVPN via my OpenVPN client, it hits port 1194 (by default) on one of their worldwide servers. It’s just a UDP connection, but I don’t think it passes through Cloudflare.

My HTTP request to a website then rides on top of that UDP connection. The website is hosted at Cloudflare, so Cloudflare will see the IP address of some Proton server in the Netherlands, let’s say, but how would Cloudflare be able pierce the veil and see my real IP in San Diego?

The bigger concern to me is that Proton sees the hostname of every site I visit since it’s the one part of the SSL (HTTPS) connection that isn’t encrypted.

It's no big deal. I use Proton VPN just for porn.

I ran a couple IP address for US-based VPN servers (that you can use via wireguard) and they all came back with various ARIN-COGC Cogent Communications blocks. I hate Cloudflare as much as the next guy, but it doesn't appear that all of the US IP addresses they expose for wireguard connections are upstreamed by Cloudflare. Not that Cogent is likely any better but just wanted to point that out.

This is despite the fact I use ControlD as my DNS of choice, and I'm already going through a VPN connection so Cloudflare doesn't see squat.

Proton, however, really should be using ControlD or Quad9, though.

@protonvpn, this true?

most people aren't aware that they're leaking traffic, even when using your own server/vpn. apple argument, "your clock wont work, if we route your entire traffic through your vpn". fucking joke.

https://proton.me/blog/anti-censorship-alternative-routing

Proton suck. Its a honey pot.

Is proton a honeypot? Has MLS encryption a backdoor?

I kicked Proton to the curb after six years of being a paying customer because the froze my account for no apparent reason. Then they tried to bullshit me as to why it was done. Had they just said we fucked up and sorry, I would have been okay with that.

I'm now a tuta.com paying customer.

Hopefully, someday there will be a Nostr implementation supporting email.

I just gave up couple months ago and now use Cloudflare warp as my vpn

VPNs are mostly a scam, imo. They served a purpose, but mostly for corporations who actual network boundaries. Doesn’t really work that way anymore.

I get into constant arguments with people in my fiat job about this. They’ve been sold the maxim that VPN = secure for so long, they can’t even reason about it in modern environments.

nostr:nevent1qqsr605swzpd669c8ds5jddu6zl5z825zr8t96dd62408w4jcfsyuggpndmhxue69uhkummn9ekx7mp0y5erqamnwvaz7tmwdaehgu3wd3skuep0y5erqffjxpshvct5v9ez2v3swaehxw309ahx7um5wgh8w6twv5hj2v3sy5erqctkv96xzu39xgc8wumn8ghj7ur4wfcxcetjv4kxz7fwvdhk6te9xgc8wumn8ghj7un9d3shjtnyv9kh2uewd9hj7ffjxpmhxue69uhhyetvv9ujuumwdae8gtnnda3kjctv9ugsclfc

Interesting Article that you must read! 🎩 ⚡

nostr:nevent1qvzqqqqqqypzptpldtlpwkflvxqs2y76exs7238g0wwwjxe86dac3mzclw4fq992qqsr605swzpd669c8ds5jddu6zl5z825zr8t96dd62408w4jcfsyugggtr4kf

GM🙂🤙

Does Proton use Cloudflare as their upstream provider?

If this is true, is Cloudflare able to associate the IP address of a Proton VPN user with the url that is accessed?🧐

🎧🫖🍵☺️

The question was prompted by the following note:

nostr:nevent1qqsr605swzpd669c8ds5jddu6zl5z825zr8t96dd62408w4jcfsyuggpzamhxue69uhhyetvv9ujumn0wd68ytnzv9hxgtczyzkr76h7zavn7cvpq5fa4jdpu4zws7uuaydj05mm3rk937a2jq225qcyqqqqqqg966qhx

#FreedomTechFriday

nostr:npub1dd9znw7585wsam4d8p84ztdmtywwjsrayld6fzk4fvqdn5hpju4st5xe7p is this the case for your product as well?

https://holesail.io

Ô droga, lá vem.

nostr:nevent1qqsr605swzpd669c8ds5jddu6zl5z825zr8t96dd62408w4jcfsyuggpg3mhxw309ankummnw3ery6nwv9cxkdejd4hxzem3xd3h27ttvehkudenw3jk67nsxumkscmzde3kudrnd9kxwaphxa3x7un4d9jzummwd9hkutczyzkr76h7zavn7cvpq5fa4jdpu4zws7uuaydj05mm3rk937a2jq225qcyqqqqqqga3g67v