I have seen the following argument (summarized here as I understand it):

Despite the promises that VPN providers make, it is known that they will often monitor your traffic, collect logs, might share your information, and will collaborate with law enforcement. Renting a VPS and running an OpenVPN server on it and using that as your VPN, is better - because you have full control over the logs. Let’s assume we trust the VPS provider to adhere to their TOS and privacy policy.

To talk about a concrete typical usecase, I am thinking about how this applies to downloading illegal torrents. In my current view, the only scenario in which the self-hosted option makes sense is if you pay for hosting using crypto and reveal no personal information during the process. Otherwise using a VPS would be virtually the same as downloading it through your ISP - and in some cases even worse - because the VPS provider might be more easily pushed to throwing you under the bus if abuse is reported since this might be a TOS violation. On the other hand, a VPN provider has a much larger motivation to protect users against this because the way that users perceive these protections is fundamental to their business model.

So, is there a reason to self-host a VPN instead of using a VPN provider? If so, should the VPS be acquired anonymously, or are there ways to protect yourself while using a provider that you gave your personal information to?

  • poVoq@slrpnk.net
    link
    fedilink
    arrow-up
    6
    ·
    edit-2
    2 years ago

    Most VPS are heavily traffic limited via the fine-print / QoS traffic shaping and will not work for torrenting due to that. And abusing a VPS for traffic heavy VPN is nearly always against their ToS regardless of what you actually use it for.

    • Salamander@mander.xyzOP
      link
      fedilink
      arrow-up
      2
      ·
      2 years ago

      It makes sense. I am asking because I ran into a few videos (such as this one) advocating self-hosting of VPNs, but I am thinking that it is not such a good idea.

      I just watched this video by Linus Tech Tips on the topic and I think that he gives a good explanation.

      It appears that there are some specific cases in which having a VPN server is useful, but these cases are different than the cases for which a VPN provider is useful. Do you think that it fair to say that if one wants a ‘DIY’ solution it is better to stick with TOR and/or P2P?

      • poVoq@slrpnk.net
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        2 years ago

        There is certainly a logic behind self-hosting a VPN, but it doesn’t work very well if your main intended purpose is torrenting copyrighted videos. You will not have a great experience doing that over ToR either as that is quite slow. While ToR exit nodes are not preventing such use, it is clearly against the intended purpose of them and harms the overall ToR network by saturating bandwidth.

        • Salamander@mander.xyzOP
          link
          fedilink
          arrow-up
          2
          ·
          2 years ago

          I am talking about torrenting because I figured it was one of the main use-cases. But I don’t personally torrent, I use the VPN as a general privacy strategy. Thinking about this, I think that I have framed this question the wrong way by giving an illegal usecase. So I am interested in the logic for legal use.

          If I am not breaking the law, then one purpose of the VPN is to keep my activity private. If I connect through an ISP, my ISP has my personal information and can log my activity. If I connect through a VPN provider, the VPN provider has my personal information and they can associate it with my activity. If I use my own VPN, then my VPS provider can in theory log my activity by monitoring the connections that my server makes. But it is less likely that the VPS provider would invest the effort in logging this type of information because different servers are pinging the web all the time for many different reasons, so it is of no value to them to try to gather this type data.

          So I am now thinking about it along the following lines:

          The VPS is better for privacy because even though they can see their servers communicating with other networks, and they know that you own the server, they don’t have enough information to determine why those connections are being made (is it a website? a vpn? a web crawler? or some other junk…), so collecting this data is worthless to them.

          On the other hand, the network that goes through a VPN provider’s server knows that it is you using the server to browse the web, so this is a well-defined a valuable dataset, and the value of this data incentives them to collect it.

          • poVoq@slrpnk.net
            link
            fedilink
            arrow-up
            4
            ·
            edit-2
            2 years ago

            Its not so much about using it for illegal stuff (but ofc then a VPS rented on your own name running a VPN makes even less sense) but the high amount of traffic / occupying bandwidth that is the problem for these VPS providers. They usually over-provision their services and sell a lot of cheap VPS while having relatively little bandwith shared between all these VPS. So if they allow one customer to torrent movies via their VPS that can easily have an impact on hundreds of other VPS customers by clogging up their allocated bandwidth as well.

            But the VPS provider knows exactly what sites you visit and so on when you run a VPN on one of their servers (so does any VPN provider btw.). It might be just that you have more trust in the VPS provider keeping that information safe then you home ISP or the local wifi in the coffee shop you go to.

            In most cases a VPN is pretty useless and snake-oil to be honest, unless you have very specific needs and threat profile like living in China and wanting to circumvent their “great firewall” or other similar censorship efforts.

            Edit: if you rent a VPS anyways for other purposes, it is relatively little effort to put up a Wireguard VPN on that and use it on certain occasions like online shopping on a unsecure airport wifi or such. It can also help using VoIP on a mobile data connection that blocks VoIP otherwise and so on. But I would not rent a VPS just for that purpose.

            • Salamander@mander.xyzOP
              link
              fedilink
              arrow-up
              1
              ·
              2 years ago

              Thank you. VoIP is something that I have vaguely heard about but have never looked into - maybe I should, it sounds interesting.

              From this thread I have gotten a few ideas. It would make sense to host a VPN from my raspberry pi at home. The network at my university is monitored in a personalized manner, for example, so I could route most of my connections through my raspberry pi to avoid snooping. The university network is good for accessing papers though, so I need to learn how to specify that the browser should access academic papers through the uni network directly and everything else via VPN.

                • poVoq@slrpnk.net
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  2 years ago

                  Yeah, funnily enough through lots of mobile phone network operators block SIP VoIP calls while allowing WhatsApp etc through.

                • Salamander@mander.xyzOP
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  2 years ago

                  Ah, thank you. I thought that it meant a way to simulate having a phone in the sense that one is able to have a “phone number” associated with a voice call program.