The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
Rule 1- All posts must begin with YSK.
All posts must begin with YSK. If you're a Mastodon user, then include YSK after @youshouldknow. This is a community to share tips and tricks that will help you improve your life.
Rule 2- Your post body text must include the reason "Why" YSK:
**In your post's text body, you must include the reason "Why" YSK: It’s helpful for readability, and informs readers about the importance of the content. **
Rule 3- Do not seek mental, medical and professional help here.
Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.
Rule 4- No self promotion or upvote-farming of any kind.
That's it.
Rule 5- No baiting or sealioning or promoting an agenda.
Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.
Rule 6- Regarding non-YSK posts.
Provided it is about the community itself, you may post non-YSK posts using the [META] tag on your post title.
Rule 7- You can't harass or disturb other members.
If you harass or discriminate against any individual member, you will be removed.
If you are a member, sympathizer or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people and you were provably vocal about your hate, then you will be banned on sight.
For further explanation, clarification and feedback about this rule, you may follow this link.
Rule 8- All comments should try to stay relevant to their parent content.
Rule 9- Reposts from other platforms are not allowed.
Let everyone have their own content.
Rule 10- The majority of bots aren't allowed to participate here.
Unless included in our Whitelist for Bots, your bot will not be allowed to participate in this community. To have your bot whitelisted, please contact the moderators for a short review.
Rule 11- Posts must actually be true: Disiniformation, trolling, and being misleading will not be tolerated. Repeated or egregious attempts will earn you a ban. This also applies to filing reports: If you continually file false reports YOU WILL BE BANNED! We can see who reports what, and shenanigans will not be tolerated. We are not here to ban people who said something you don't like.
If you file a report, include what specific rule is being violated and how.
You can view our partnered communities list by following this link. To partner with our community and be included, you are free to message the moderators or comment on a pinned post.
For inquiry on becoming a moderator of this community, you may comment on the pinned post of the time, or simply shoot a message to the current moderators.
Our icon(masterpiece) was made by @clen15!
https://mullvad.net/en/blog/introducing-defense-against-ai-guided-traffic-analysis-daita
Mullvad's client is open source and has some serious features over stock wg.
Also windscribe is probably being exploited by the NSA, microslop locked the lead dev's account at the same time as wireguard's and veracrypt
Did they get their account back but not the others? What makes you suspect that Windscribe specifically is compromised?
Those three were all locked out within a day. Attack was probably some specific target. The timing is just super suspicious
Thats great, but if you want to switch to another endpoint, change DNS servers, etc, the VPN app helps facilitate those changes, rather than you manually changing/updating wireguard configs.
There is a reason the VPNs provide those apps rather than just give you wireguard configs.
You stick the config in /etc/wireguard and then it's just wg-quick down endpoint1 ; wg-quick up endpoint2 to switch locations. (Being wary that the VPN will be down for a moment.) You can name them whatever you like of course.
Setting up DNS properly is not that hard and only needs doing once.
switch to another endpoint
Import multiple confis. That would solve this.
change DNS servers
You can change DNS server in the Wireguard app(by editing the config). It just requires some low amount of knowledge to do that.
You might prefer to use unofficial Wireguard/ VPN provider client. But It's not the most efficient or the secure way to connect.
How likely are vpn (mullvad) configs to change over time? Will I end up having to constantly update them, which is something I assume the native app will do.
Secondly, do the wire guard tools include things like a killswitch on disconnect so I don't accidentally send traffic if I get disconnected (eg when the VPN node I'm connected to goes down for maintenance)
I was using mullvad a couple years ago. Configs didn't change often, I updated it once or twice a year or whenever the old one stopped working.
They did have a "killswitch" type option available, I think. But it didn't seem really useful since normally when wireguard fails (on linux at least) it does not "disconnect" — it just stops any traffic getting through until it's working again.
What about port forwarding and location switching?
I depends what you mean by efficient. I find having the provider's app that offers me location switching without manually downloading a config each time more efficient.
This is especially handy on immutable Linux distros like Bazzite in cases where your provider's client is only officially available as a .deb or .rpm and you don't want to get in to layering.
I use Mullvad’s wireguard config file on my router, but the app is pretty convenient on mobile devices (phones, tablets, and laptops).
How exactly is the client of the provider inferior? I don't use my vpn for security reasons, what benefits would i get from downloading and importing the config?
~200 MB less RAM use and 1% less CPU usage it seems lol
You can get a lifetime of vpn for the price of 200 mb ram so that makes sense
Wasn't Windscribe the provider that lied about a server getting seized without a warrant?
Huh? I've been using Windscribe for a few years now, should I be concerned?
You mean they lied about it happing because it didn't actually happen? Because this tweet by their official account looks to me like them disclosing a server seizure.
https://x.com/windscribecom/status/2019529769008685438
"THIS IS NOT A DRILL: The Dutch authorities, without a warrant, just seized one of our VPN servers saying they'll give it back after they "fully analyze it".
Windscribe uses RAM disk servers so the only thing the authorities will find is a stock Ubuntu install. The bigger worry is the unredacted Epstein files we had on there..."
Yes that was what I was referring to. I suspect it was meant as some kind of marketing stunt. There are some interesting comments about this on one of the Dutch subreddits.
That link is broken for me.
Wireguard tends to bypass certain application firewalls altogether.
I can't find something like this for nordvpn
That's cause NordVPN kinda sucks