this post was submitted on 19 Mar 2025
18 points (100.0% liked)

Privacy

1500 readers
571 users here now

Protect your privacy in the digital world

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

  1. Be nice, civil and no bigotry/prejudice.
  2. No tankies/alt-right fascists. The former can be tolerated but the latter are banned.
  3. Stay on topic.
  4. Don't promote big-tech software.
  5. No reposting of news that was already posted. Even from different sources.
  6. No crypto, blockchain, etc.
  7. No Xitter links. (only allowed when can't fact check any other way, use xcancel)

Related communities:

founded 4 months ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
18
If you use Mullvad, do you use the "Quantum-resistant" option in official client? (lemmy.sdf.org)
submitted 2 days ago by [email protected] to c/[email protected]
9 comments fedilink hide all child comments
 

I've always had it on, but it's kind of a pain in the ass. Especially on worse (not necessarily slower) networks.

On laptop it's fine for the most part since the use-case is a bit different, but on a phone it's causing me some annoyances/issues.

With my carrier indoors it takes on average 62 seconds to connect. This is pretty annoying if toggling/switching VPN servers more often.
But when travelling (e.g.: in a train) it can make the difference from slightly spotty signal to almost never being connected successfully, impacting usability.

As such, I often find myself not even using VPN in such cases in the first place.
For comparison, plain Wireguard is done before I can pull away my finger from the "connect" button, usually even on 2G EDGE.

Do you keep this (perhaps a bit paranoid-level) option on?
Even if actually useful in the future, it would only protect traffic recorded from User to VPN anyway.

top 9 comments
sorted by: hot top controversial new old
[–] [email protected] 15 points 2 days ago

That shouldn't happen. All quantum resistant does is to switch out RSA for ML-KEM. The data transmitted is slightly more, around a KB vs a couple bytes, but that only happens once. The algorithm itself is actually faster.

So something else is going on here. I suspect it has to do with the MTU of your carrier, because the handshake will most likely not fit into a single packet, and then maybe something goes wrong with the related ICMP.

[–] [email protected] 2 points 2 days ago

I notice the same effects as well. On desktop I keep it on because it doesn't take any longer and provides extra secutity, so why not. But on my phone over lte it doesn't work at all, so I keep it off.

There are only a handfull of quantum computers that could actually brute force a good vpn, and I highly doubt any of them would waste time/resources on spying on me playing steam games or browsing lemmy. In my opinion it's more of a future-proofing feature, and is less important to have on, in 2025 at least.

[–] [email protected] 2 points 2 days ago (3 children)

If you don't need to use a VPN, eg. while on the move, why use one in the first place?

[–] [email protected] 3 points 2 days ago

Personally i mostly use a VPN/tor for browsing the web, because i do not trust my ISP. There is also heavy censorship in my country, so i need to anyway. (For example, feddit.org/blahaj are blocked for... some reason. So it's way harder to browse lemmy without one of them.)

[–] [email protected] 2 points 2 days ago (1 children)

for when you don't trust your monopolistic ISP, and when you want to take advantage of the filtering setup at home

[–] [email protected] 1 points 2 days ago

I'm fully fine with a selfhosted VPN, and use that myself. But commercial VPNs are not the solution to anything.

[–] [email protected] 3 points 2 days ago* (last edited 2 days ago) (1 children)

It still helps with localization on websites so that I get better results (for me).

But also, my ISP's IPs have such awesome reputation that in certain places I get less Captchas on Mullvad. For example on Google in incognito or reset browser.

Plus it still helps privacy-wise. ISP doesn't know what I connect to, destination doesn't know my (ISP's) IP.

The only thing I don't use VPN for is, ironically, torrents. The only stuff I torrent is legal, and it's faster this way.

[–] [email protected] 1 points 2 days ago

Just use a search with easy language/localization setting then, you shouldn't use google anyway, not only for privacy but also as a matter of principle. Also, funneling all traffic through a VPN just shifts the tracking to them, so they still know which account number visits what and when. While in public WiFis, mobile networks etc. It's probably better to not use a VPN, as to spread traces over multiple seperate services. Or use multiple VPNs.

[–] [email protected] 1 points 2 days ago* (last edited 2 days ago)

It isn't useful protection currently as quantum computers haven't done any factoring above 21