With the UK apparently floating ideas of a VPN ban it’s got me worried about the future of anonymity online. Now people have already pointed out that a VPN ban doesn’t make sense because of all the legitimate uses of one and wouldn’t even be enforceable anyway, but that got me thinking.
What if governments ordered websites (such as social media sites) to block traffic originating from a VPN node? Lots of sites already do this (or restrict your activity if they detect a VPN) to mitigate spam etc. and technically that wouldn’t interfere with “legitimate” (in the eyes of the gov) VPN usage like logging onto corporate networks remotely
It’s already a pain with so many sites either blocking you from access or making you jump through a million captchas using VPNs now. I’m worried it’s about to get a whole lot worse
Lol it would break so much shit they just couldn’t.
Prohibition has never been a deterrent to consumption.
I imagine it’d be a jurisdiction issue for what you propose. If, say, the UK mandates that websites block VPN nodes, that will affect websites served from the UK (creating a Great Firewall of Britain). But what about websites served outside the UK? Those websites can’t possibly tell if a user is from the UK and using a VPN, vs outside the UK and using a VPN, so they can’t only block UK visitors—they’d have to block all VPN traffic, which is probably not worth it from a business point of view. I suppose the UK could then deem that website illegal in the UK and block them, but then that’d only block the website for non-VPN users in the UK… But if the website owner is outside the UK they can’t be punished for violating that law.
More probable (though I still think unlikely) is that a country could sniff for e.g. Wireguard packets and block those. But again that’s unlikely because of businesses using VPNs to let employees access company intranets at home.
VPN technology will never be banned, as most companies rely on it heavily, e.g. for remote work. The only thing I could see is ISPs keeping a blacklist of known addresses of commercial VPN providers, but that seems like an uphill battle
A company can run their own VPN server. A third party need not be involved. The commercial VPN service providers can therefore be blocked by government without affecting those businesses.
Yes. By ‘VPN technology’ I mean e.g. wireguard, openVPN, which are infeasible to ban since companies probably use the same software stack.
Companies like Akamai already do this to an extent. My employer is an Akamai customer, and they’ve offered this service to us in the past when we saw a lot of malicious traffic originating from commercial VPN providers.
Tor bridges exist for this don’t they?
Yeah, next they’ll shut down computer servers
Stupid
Yes they can ban it, you will face repercussions if you violate that ban just like if you violate the ban your country probably has on heroin or machine guns.
You can get around it by using doh and a http proxy configured in your web browser, not at the os level.
Anything is possible. Except being free of course.
Just human things.
Lots of places are applying that sort of regulation already. Problem is, how do you know which IPs are VPNs? There are some obvious ways, and many people block some VPNs already but you can’t block every VPN. I can spin up a VPN right now and open it up to users in other countries. It’s impossible.
The gov could theoretically maintain a repository of “known” VPNs that they could require sites to block, though. They could even force them to be blocked at the DNS level. This would probably be fairly effective.
But that’s also most certainly going to be abused as well.
They are only interested in retail, anonymizing VPNs. If you spin up your own VPN you are still 1:1 linked to that IP address. If you use a work VPN, they fully track everything. The anonymizing ones that dont track users and share an IP between many users are a threat to mass surveilance.
Same as the stupid age verification, it will funnel people away from legitimate services to dodgy ones.
Small scale version. I heard from some kids that they wanted to play Roblox at school. IT had blocked it on the Wifi. The kids advice to each other was “go on the play store, search VPN, and install whatever one is free.” - IT absolutely isn’t making those kids safer.
You can always just route your traffic through a roll your own tunnel to some cheap cloud VM. Modern automation makes it even painless.
I do exactly this, but it doesn’t protect your privacy. That one IP address is literally tied to your credit card number and you are the only person using it.
I do this. I already had a cloud vps with a vpn on it for remote access so i figured i might as well set it up to route traffic as well.
Still get loads of sites blocking me
People won’t do that as we are lazy as a species. Any sort of friction and the people who do it well drop considerably.
When privacy is outlawed, only outlaws will have privacy.
People used to not use VPNs too - until they realized how useful they can be by spread in pop culture and increasing tech awareness of the general public.
If commercial VPNs are banned the tech savvy will move onto a replacement immediately, and the knowledge will slowly expand through social circles and social media until it has similar penetration in society.
A VPN ban would be both harmful (to business and consumers short term) and pointless.
Anything can be made illegal. Enforcement is tricky. At the moment it is very easy to block Wireguard protocol at the ISP level, some even do it. But that would probably push Wireguard and others to invest more in obfuscation.
As a sidenote, it bugs me that Wireguard does not support obfuscation out of the box, and you have to put it on top of wireguard.
I have moments when I think “I might get banned for this”, this is one of those moments.
You may try to ban vpns but you can not really, people usually find ways around censorship. We are notorious for this stuff, as a species.
Its infuriating to me when people just roll over for the powers that be. They may ban some nodes, others will pop up, those will get banned too and so the cycle of cat and mouse begins.
You can host your own vpn with wireguard. It takes a bit of figuring out, sure, but you can literally do so with a raspberry pi. Stick it in a network of choice and voila.
Oh they may control stuff, but this is not a game that can be won, human repression is a futile effort, it may work for a while, but there is a reason why regimes fall. See the wall of Berlin and so many other examples.
Fret not friend, for hope dies last.
They could ban VPNs and not play cat an mouse. I always think China allows some VPN use when they could stop it completely. I always think of the Matrix with the option of leaving.
in my experience, community and people would always find work arounds
That would severely cripple remote work/collaboration, which is essential for all megacorps. Unless there’s some sort of carve out for that I don’t see it happening
They will only apply it to retail VPNs. You think capitalists play by the same rules?
…some sort of carve out…
Oi oi, wotsalldisthen? U got a permit for that VPN, innit?
The end goal is to either make encryption completely ineffective or get rid of it altogether. Remember the last few times lawmakers have tried “protecting the children”?
