https://torrentfreak.com/italy-approves-piracy-shield-vpn-dns-proposal-risk-of-prison-for-isps-intact-241001/

As title. Italy is decided to pass a law that basically creates a chinese-type firewall in the country. The question is simple: even if I’m not doing anything illegal, my VPN provider will have to know what am I doing to report it in case it’s illegal, or face jail.

So how could my traffic remain private in this scenario?

Can a VPN provider with no logs policy be held accountable of anything? Can it actually know what I’m doing?

  • shortwavesurfer@lemmy.zip
    link
    fedilink
    arrow-up
    15
    arrow-down
    1
    ·
    9 hours ago

    If it truly keeps no logs, then it cannot tell what you are doing. But otherwise, a VPN provider can indeed tell what you’re doing because you are only shifting the trust from your internet service provider to your VPN provider. I would highly recommend something like IVPN or Mullvad and only pay for it in Monero. That way, even if logs are kept, you are just a number account to them and they do not have a name for you.

    • ShortN0te@lemmy.ml
      link
      fedilink
      arrow-up
      6
      arrow-down
      8
      ·
      9 hours ago

      a VPN provider can indeed tell what you’re doing

      New to me that https is broken

      • delirious_owl@discuss.online
        link
        fedilink
        arrow-up
        1
        ·
        2 hours ago

        You can read more about this learning about X.509.

        Its the PKI thats broken, namely the root stores. Has been unreliable for many, many years. This is why packages are signed.

      • shortwavesurfer@lemmy.zip
        link
        fedilink
        arrow-up
        9
        arrow-down
        1
        ·
        8 hours ago

        HTTPS doesn’t stop them from knowing what you visited. It just stops them from knowing what you did while you were there. VVPN provider can still see that you visited Google, but they cannot see what you asked for Google to do for you.

        • ShortN0te@lemmy.ml
          link
          fedilink
          arrow-up
          6
          ·
          8 hours ago

          Yes. Not claimed otherwise. OC claimed that they see what you are doing which is wrong.

      • slazer2au@lemmy.world
        link
        fedilink
        English
        arrow-up
        8
        ·
        8 hours ago

        don’t have to break TLS to know what site you are accessing. The SNI of the cert does that.

        The specific url however is protected by TLS.

        • ShortN0te@lemmy.ml
          link
          fedilink
          arrow-up
          8
          ·
          8 hours ago

          They see what sites you are visiting yes but they do not see what you are doing on them. They do not see the content of the traffic. Huge difference.

            • ShortN0te@lemmy.ml
              link
              fedilink
              arrow-up
              2
              arrow-down
              2
              ·
              7 hours ago

              When you get judged based on what website you are visiting it is very likely that you are already the bad guy by using a vpn.