logoalt Hacker News

Exit IP VPN servers mitigation rollout

413 pointsby Cider9986yesterday at 5:45 PM81 commentsview on HN

Comments

john_strinlaiyesterday at 6:33 PM

it should probably link to this: https://mullvad.net/en/blog/exit-ip-fingerprinting-between-v...

which is the blog post, rather than a list of exit servers

related to this post: https://news.ycombinator.com/item?id=48143880

show 3 replies
m132today at 3:44 AM

Maybe it's just me, but I'm incredibly surprised by their prompt reaction to this. As a user, I was already preparing to deal with this myself.

Wow, is this how things were before bureaucratic behemoths took over the tech industry?

show 1 reply
blfrtoday at 5:18 PM

Does this affect people using the socks proxy feature? I generally connect to the same Mullvad server over wireguard (not their client) and then use different servers for socks proxy as exits.

My clanker says no because socks proxies have all one IP per server but I don't know whether to trust it.

show 1 reply
mjevansyesterday at 7:00 PM

I'd really like some version of E.G. Librewolf configured to spoof the exact SAME information no matter who's using it. Like standard resolution for a 1080p monitor, the same GPU profile, Allow device timing stuff to work but with a fixed profile etc.

Effectively, stop spoofing random data, start spoofing still useful but not for finger printing data.

show 2 replies
halaprotoday at 5:44 AM

When news broke I was really confused how IPs with thousands of users would suddenly be more identifying than your home IP with one user.

I'm happy that Mullvad actually explains the issue very clearly in https://mullvad.net/en/blog/exit-ip-fingerprinting-between-v...

show 1 reply
Cider9986yesterday at 8:46 PM

If you us Mullvad browser, which has built in Mullvad proxies, this isn't an issue because it doesn't use wireguard.

The browser also has a cool feature in the browser extension called Random mode. This gives you a different IP for each site, improving your privacy.

show 3 replies
Schlagbohrertoday at 9:36 AM

I've always assumed that when I am logged in to a website like Hacker News and I switch VPN endpoints, Hacker News now gets to see that I am a VPN user and track me between the IPs. I mean being logged in to something obviously negates a large amount of anonymity but switching servers while logged in really gives away the VPN usage, right? Or do large web services already keep up to date indecies of all common VPN IPs?

Anonynekotoday at 10:27 AM

I wish Mullvad would focus on censorship breaking. These days anything that doesn't implement something along the lines of AmneziaWG/Xray/Shadowsocks/Outline feels like a waste of time, sadly.

show 2 replies
andrewstuartyesterday at 6:45 PM

Do VPNs pay retail ISPs for exit points?

show 4 replies
StackExpressyesterday at 7:25 PM

[flagged]

immanuwelltoday at 4:23 AM

[dead]

dartharvatoday at 3:51 AM

[flagged]

aksztyesterday at 7:57 PM

[flagged]

show 1 reply
rjhy2020yesterday at 7:50 PM

[dead]

willis936yesterday at 7:36 PM

Is this at all related to Wyden's recent congressional warning? Are any other VPN providers speaking up on this?

https://www.wyden.senate.gov/imo/media/doc/wyden_letter_to_g...

show 1 reply