[AccessD] VPN

James Button jamesbutton at blueyonder.co.uk
Sun Nov 14 11:13:10 CST 2021 

Remember - 
what - 
That the security of any tech device is annoyingly difficult to maintain

First need will be encryption from within the communicating devices so that all
text  is encrypted to at least 512 bit level 
 (MS has reported that it is moving from 256 bit encryption as that is now too
easily and swiftly broken.)

Also consider that there are many government associated organisations that will
have 'backdoor's) available into a variety of components and facilities between
the message conception, and it's complete erasure from the receiving device by
the intended recipient.


Remember the cookies settings where you said NO NO NO NO NO NO NO NO NO NO NO NO
NO NO NO NO NO NO NO NO NO NO NO NO NO NO NO NO NO NO
Well that certainly raises a flag from the site being told NO that you are
secretive and want to hide your activities.
And surely you really didn't believe they would not install monitoring cookies.

Also - OK VPN's are supposed to be secure 
however who is going to assure you that their systems have not been back-doored,

or even front-door'd using court orders.

All that is needed is a small module of code monitoring  what outgoing VPN was
assigned for use from which IP.

Also consider - any connection will almost certainly expose your IP unless you
are using relaying systems.
and the x on the top right corner of a window pane 
consider what happens if you use that on a MsWord session or an Outlook session
where you have been editing something 
Does the session just disappear - OK EDGE may do that, but note the messages
when you restart the app !
So - you believe that the person managing a web site ( may not be the owner, or
the admin they authorised)
cannot easily record details about you, and your system when you start to
respond to the we need your authority to run cookies, or record who initiated
the session, and from where ( as in your ISP ).
 

Now, considering your phone that has your emails delivered to it, and from where
you contact your devices at home,  when in the car, in the office, on public
transport.
Yup - all those IP's are collectable, as well as the model and serial  and
presumably the access to the hub/modem/WiFi linking units.

So - VPN  may make it a bit difficult for the recipient to identify you, and
where you are
but anyone with serious interest can probably identify you given a week or so
for their intrusion to get at a device used, and then work back through the
message store and forward logging chains

Just take a look at the header details on this email as delivered to you!

Then consider how secure a VPN makes your communications 
and are you sure the VPN  supplier is not actually a government run facility 
(As users of a "highly secure" communications facility recently found  - the
encryption facility supplied for installation on their systems had a basic
backdoor access facility built into it by what appears to have been a consortium
of government agencies)

JimB

-----Original Message-----
From: AccessD
<accessd-bounces+jamesbutton=blueyonder.co.uk at databaseadvisors.com> On Behalf Of
Gary Kjos
Sent: Sunday, November 14, 2021 4:28 PM
To: Access Developers discussion and problem solving
<accessd at databaseadvisors.com>
Subject: Re: [AccessD] VPN

As long as you remember.

GK

On Sun, Nov 14, 2021 at 9:23 AM Rocky Smolin <rockysmolin2 at gmail.com> wrote:
>
> Quell there's a downside. Accessing my account on some sites, like Morgan
> Stanley, the bank, credit cards, will stop me if they don't recognize my IP
> and make me jump through hoops - responding to an email or entering a code
> they send to my phone.  So that could be annoyingly inconvenient.
>
> But I suppose it's easy to turn off the VPN and turn it back on again?
>
> r
>
> On Sun, Nov 14, 2021 at 4:23 AM James Button via AccessD <
> accessd at databaseadvisors.com> wrote:
>
> > The VPN can indicate to the accessed site that your ISP (and you) are in a
> > particular country,
> > as in you may be in Russia, but you can access banking sites in the USA
> > as if
> > you were in the USA and with appropriate id codes - a USA citizen.
> > So - you keep a particular system id for access to the banking facility -
> > as in
> > not using a public device, but the one it has noted in it's security data
> > on you.
> >
> > JimB
> > -----Original Message-----
> > From: AccessD
> > <accessd-bounces+jamesbutton=blueyonder.co.uk at databaseadvisors.com> On
> > Behalf Of
> > Rocky Smolin
> > Sent: Sunday, November 14, 2021 1:21 AM
> > To: Access Developers discussion and problem solving
> > <accessd at databaseadvisors.com>
> > Subject: Re: [AccessD] VPN
> >
> > It would seem that a changing IP address would give you better security if
> > you were trying to hide something.  What's the advantage of dedicated IP?
> >
> > And, of course, you have to trust the provider as they presumably know the
> > link between your IP and the one they give you, yes?
> >
> > r
> >
> > On Sat, Nov 13, 2021 at 3:12 PM Stuart McLachlan <stuart at lexacorp.com.pg>
> > wrote:
> >
> > > You will be seen as the IP address of the VPN server you connect through.
> > >  Most VPN
> > > providers generally have  pools of IP addresses in different countries.
> > >
> > > If you use a free service,   you will probably be seen as a different
> > > address every time you
> > > set up a VPN session.
> > >
> > > More expensive offerings do offer dedicated IP addresses.
> > > Nord, CyberHost are two for example.  The latter describes the situation
> > > quite well:
> > > https://www.cyberghostvpn.com/en_US/dedicated-ip-vpn
> > >
> > >
> > > On 13 Nov 2021 at 14:54, Rocky Smolin wrote:
> > >
> > > > Jim:
> > > >
> > > > Do you know if the servers see you as a different IP address every
> > > > time you use the VPN?
> > > >
> > > > r
> > > > On Sat, Nov 13, 2021 at 1:54 PM Jim Dettman via AccessD <
> > > > accessd at databaseadvisors.com> wrote:
> > > >
> > > > > Rocky,
> > > > >    Haven't used any myself, but Nord VPN:
> > > > > https://nordvpn.com/
> > > > >   Is one I see advertised frequently and it gets good reviews.  Some
> > > > >   of the
> > > > > major anti-virus players (Trend, Norton) have VPN built-in, but they
> > > > > may not be as feature rich as something like Nord.
> > > > >   As far as "how it works", you turn it on, and all your internet
> > > > >   traffic
> > > > > runs through it to one of their servers, then out to the internet.
> > > > > Thus you can make it appear you are located anywhere in the world
> > > > > (that is with services that let you choose the server).
> > > > > Jim.
> > > > > -----Original Message-----
> > > > > From: AccessD On Behalf Of Rocky Smolin
> > > > > Sent: Saturday, November 13, 2021 2:08 PM
> > > > > To: Off Topic <dba-ot at databaseadvisors.com>; Access Developers
> > > > > discussion and problem solving <accessd at databaseadvisors.com>; List
> > > > > <dba-tech at databaseadvisors.com> Subject: [AccessD] VPN
> > > > >
> > > > > Lear List(s):
> > > > > I don't have a need for a VPN but I'd like to play with one just to
> > > > > see how they work,
> > > > > Any recommendations for the best free VPN?
> > > > > r
> > > > > AccessD mailing list
>

More information about the AccessD mailing list