Don't use Nord.
this post was submitted on 28 Jun 2023
27 points (96.6% liked)
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
54008 readers
439 users here now
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
Rules • Full Version
1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
Loot, Pillage, & Plunder
💰 Please help cover server costs.
founded 1 year ago
MODERATORS
fair 'nuf. but that 'requires' a: use ... instead. That is, you recommend ....?
Windscribe, Mullvad, IVPN, Proton
Proton, all around better service and Swiss privacy Promise (a one you can actually build on)
I'm using a shared NordVPN account I bought from a random site for 2.5USD and 9 months of service LOL.
I will buy one for another random site when this expires.
Why? Privacy issues? Security issues? I've been using it for a couple of years now and not had any trouble with it.
Many issues.
- They were hacked in 2019 and got their private keys leaked.
- They have ties to a data mining company called Tesonet.
- Their "experiments" have used cookies to perform price discrimination on unsuspecting visitors.
- Their website is infested with trackers and third party cookies.
Also they have a shit load of money advertising, if a company advertises that much they definitely scam you.
Some further reasons to avoid NordVPN
Proton VPN has a free tier. Other recommended VPNs are IVPN and Mullvad. Techlore, Privacy Guides, and The New Oil have solid recommendations. IVPN allows for using a custom DNS over HTTPS (DoH) and has a Fedora Silverblue client.
Not to be too obvious, but have you tried different servers?
That's a perfectly sensible question. But alas, i've tried many different NordVPN servers and no luck:
AUTH: Received control message: AUTH_FAILED
This being the very same username/password pair which allows a login on the NordVPN page
UPDATE3: NordVPN changed stuff as regards OpenVPN access and apparently told no one (not even their support folks!). You must now go to their login page and pursue "manual setup" which apparently ends one with a new username/password pair. But it's not made clear how long (perhaps one session?) these will last. Well, mateys i'm likely to kiss NordVPN goodbye for this. @#$!!! (there's a reddit post about this, forgive me for offering a reddit link but there's little else here it is: https://www.reddit.com/r/nordvpn/comments/14l7r7k/anyone_else_unable_to_login/ )
The manual credentials last indefinitely as far as I can tell. I just checked my NordVPN settings, and lo and behold I set this up years ago and forgot about it. It's been working for me this entire time and I noticed no connection drop on my media server today.
I'm guessing this change is related to two factor authentication. For accounts with 2FA enabled, I imagine they flipped some switch so that the default credentials can no longer be used without also supplying the 2FA token. Terrible messaging and rollout on their part though, no question. On the flip side I think manual credentials were always the intended setup for OpenVPN, and the real fuckup is that you're regular credentials ever worked without your 2FA token, even though you had 2FA enabled. That makes me seriously question Nord's security chops...
view more: next ›