Comment by HDThoreaun

HDThoreaun 2 days ago parent

It is not possible to censor the internet when VPNs are freely available. The more you try the more it backfires. By telling your kids they cant see a website they are sure to visit it, all they have to do is google for a free vpn.

ninalanyon 2 days ago

> It is not possible to censor the internet when VPNs are freely available.

The obvious next step is to ban VPNs too or to block connections to their servers.

HDThoreaun OP 2 days ago

There are ways around this too. When the VPN entrance point is a static IP a ban may work but what happens when a product shows up that spins up dynamic VPSs in the public cloud? All the cloud providers have free trials that let people do this for free forever. Sounds difficult but surely people will come up with a streamlined approach if push comes to shove. Even in china where using a VPN is a major crime they are unable to stop people from using them.

gorgoiler 1 day ago

Off the top of my head here are some ways you could fairly easily shut down VPNs.

The big one is to start whitelisting good protocols only. That means everything must be https and you have to at least pass the hostname in plaintext. Random traffic on UDP ports is now illegal as it is assumed to be VPN traffic.

Another one is to pass a law telling ISPs to flag customers with traffic patterns only to a single IP address, set of IP addresses, or a single ASN. This means that you can’t just tunnel everything to your VPS in Amsterdam.

You might also pass a law that still allows, say, ssh and random UDP traffic, but with the provision that bandwidth on any non HTTPS ports is capped at 200kbps. You only use ssh for running a shell after all — why would you need more than that! /s

ASNs are a fun feature of the internet in that there are a lot of them but they are finite and scale on the order of organised human activity, mostly businesses. That means it is eminently tractable to categorize them all and regulate traffic from residential ISPs to commercial services ISPs only, and throttle traffic from home users to hosting providers. This already happens — try connecting to Reddit from anything other than a residential IP address.

grayhatter 1 day ago

> Random traffic on UDP ports is now illegal as it is assumed to be VPN traffic.

You do realize that things other than VPNs use UDP right?

The whole post is so nonsensical I would have assumed it's all sarcasm, but the single tag in the middle has me confused.

cma 1 day ago

You can do UDP like VPNs over https, by opening multiple channels and round robining packets to get around head of line blocking.

inkyoto 1 day ago

Disruption at the technical level will prove excessively convoluted and impractical to enforce, for censorship-resistant VPN technologies continue to evolve at an accelerated pace – Amnezia and XRay2 serve as exemplary cases in point.

A far more expedient course lies in legislative control: the imposition of a licensing requirement for VPN usage, coupled with punitive measures – fines and imprisonment – for defiance thereof. A few well-chosen prosecutions, conducted publicly with a fanfare and pomp and without leniency, would suffice to instil both fear and obedience amongst the populace.

As ever, the familiar refrain of «think of the children» would provide an acceptable veneer of moral justification to soothe the public conscience.

Ray20 1 day ago

>It is not possible to censor the internet when VPNs are freely available.

What's stopping VPN providers from being forced to censor the internet?

HDThoreaun OP 1 day ago

Other VPN providers not being forced to censor the internet? VPN providers in the US will never have to bow to censorship as long as the first amendment is doing its thing

jay_kyburz 2 days ago

I think buy the time your kids can order, pay for, and configure a VPN they are old enough to look at boobies on the internet.

This item has no comments currently.