I am not trying stir up the hornet net or anything like that but simply want to say that certain VPN protocols are not as secure and therefore may compromise your chosen method without you knowing. Not to mention it a waste of your effort.
PPTP can be cracked by government security agencies, i.e GCHQ (UK) or NSA (US). Microsoft actually recommended users not to use PPTP quite a while ago.
L2TP/IPSec is also known to be compromised by same security agencies above. it is not 100% secure. This was revealed by Edward Snowden, the IT contractor of the NSA (US) and who was granted asylum in Russia.
There is a summary at end of the article if you don’t want to read the whole thing. It suggests OpenVPN or SSTP (note SSTP is only available in Windows environment).
It’s true in what you’re saying. But how practical and sensible is it in today environment? Taking your advice literally means one should not use the Net to be totally safe. Well, North Korea comes to mind.
During the build of my NAS, I found out the security ‘leak’ of PPTP , which I used previously to access files from home, sometimes using public wifi, while traveling o/seas. I no longer use PPTP. And I thought of sharing my findings on the forum.
My findings also led me to use my friend’s NAS as my offsite backup, and mine NAS as his remote backup. This allows us to eliminates the middleman and no ongoing costs. Using Rsync via openVPN minimizes bandwidth for us, but that’s another story.
Everything is crack-able. As @43north said, stay off the net if you want security. Just a couple of days ago I was reading how in Israel managed to compromise an “air gapped computer” by using cell phones for experimental purposes. So, if somebody is on to you, they will eventually get there
OpenVPN regard as more secure VPN protocol than pptp, lt2p and many others. Not all but some best vpn services provide OpenVPN protocols to further strengthen the security level for their users. The OpenVPN is generally a fresh open source technology. It applies VPN techniques for the purpose of making site-to-site (or point-to-point) connections. The tool makes use of custom security protocol that uses SSL/TLS –this for exchanging key.
Everything not supported by iOS* is fresh
* not to be confused with Cisco IOS. The big inventors didn’t even get a new name for their OS. Not even the “i” at the beginning is original, remember the iPAQ from Compaq? The only thing they invent is ways to screw up wireless protocols.
