We’ve reached a point where privacy is becoming more and more important and there’s been some customers who have requested for us to implement encryption on the proxied-all configurations. We were previously not in favor of this since we felt that the Fully Routed options served the privacy purpose and that the Proxied configurations retained their speed advantage but removing encryption while maintaining a certain degree of anonymity but are now taking a second look at this policy in view of more intrusive governments/ISPs.
If we implement encryption, speeds on the Proxied servers will drop by about 5-10% due to encryption overhead but in return you’ll get Blowfish 128 bit encryption on your data. This would also require a global configuration change and more resources on our part to keep these servers running.
If we don’t implement encryption, anything that passes through the proxy servers will just be socks5 encapsulated but have no encryption meaning someone who is determined can examine the content of the data passing through.
Thus we would like to hear your thoughts on these before we go about this drastic change.