this post was submitted on 04 Oct 2023
130 points (95.8% liked)

World News

32306 readers
632 users here now

News from around the world!

Rules:

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (2 children)

What's the reasoning for this? Surely it's not that difficult to block all traffic pointing to "vpn.protonvpn.com" (simplified url for the sake of argument)

Even if a VPN provider had 100 URLs to tunnel traffic through, they would all be found in a matter of time, no?

[–] [email protected] 14 points 1 year ago* (last edited 1 year ago)

The difficulty is that a VPN isn't just a product like ProtonVPN, it's a huge family of software and protocols.

You can block vpn.protonvpn.com, but since most operating systems come with VPN functionality out of the box, you'd have to start listening to all traffic (not just DNS lookups) and blocking ALL packets that might be VPN traffic without causing regular disruption to non-vpn traffic.

TL;DR: it's easy to prevent unmotivated users from downloading a VPN app. It's practically impossible to block a motivated user from using a VPN, and they're the users you particularly care about.