Comment on How do I host Jellyfin in the most secure manner possible?
Charger8232@lemmy.ml 1 week agoThe only other providers I would use are Mullvad VPN or IVPN, both of which are paid.
Comment on How do I host Jellyfin in the most secure manner possible?
Charger8232@lemmy.ml 1 week agoThe only other providers I would use are Mullvad VPN or IVPN, both of which are paid.
Trainguyrom@reddthat.com 1 week ago
Wait you’re seriously using a free VPN?
someacnt@sh.itjust.works 1 week ago
Being concerned about security while using free VPN sounds like an oxymoron.
sem@lemmy.blahaj.zone 1 week ago
Is there any reason to think the free Proton VPN is somehow insecure?
litchralee@sh.itjust.works 1 week ago
Not “insecure” in the sense that they’re shoddy with their encryption, no. But being free could possibly mean their incentives are not necessarily aligned with that of the free users.
In security speak, the CIA triad stands for Confidentiality, Integrity, and Availability. I’m not going to unduly impugn Proton VPN’s credentials on data confidentiality and data integrity, but availability can be a legit security concern.
For example, if push comes to shove and Proton VPN is hit with a DDoS attack, would free tier users be the first to be disconnected to free up capacity? Alternatively, suppose the price for IP transit shoots through the roof due to weird global economics and ProtonVPN has to throttle the free tier to 10 Mbps. All VPN operators share these possibilities, but however well-meaning Proton VPN and the non-profit behind them are, economic factors can force changes that aren’t great for the free users.
Now, the obv solution at such a time would be to then switch to being a paid customer. And that might be fine for lots of customers, if that ever comes to pass. But Murphy’s Law makes it a habit that this scenario would play out when users are least able to prepare for it, possibly leading to some amount of unavailability.