BolehVPN: Freedom Through Security

Archive for the ‘Announcements’ Category

Friday, January 16th, 2015

Important Changes to our DNS Servers for BolehVPN

Current Situation

We have been considering the issue of DNS servers that we use in our VPN servers and thank all users who have provided valuable feedback to us. DNS servers translate the easy to remember word addresses (such as bolehvpn.net) into IP addresses which is a bunch of numbers. Previously we used the default DNS servers that were provided by each server provider’s ISP but due to some unreliability, we then moved to Google’s DNS servers (which wipes its logs every few days) and then we dabbled for a while with OpenNIC’s no log servers. OpenNIC’s servers being hosted independently kept on going down and so we reverted to Google and/or OpenDNS.

Is there a a Problem?

Even using this setup, an ISP cannot see what you’re surfing as all queries are going through the encrypted tunnel. However the administrator running the DNS server (Google or OpenDNS) is able to capture some info which are the following:

  • Our VPN server’s IP
  • The time of the DNS query
  • The destination address of the query

For example if you were trying to access minecraft.com through your internet browser while on our VPN, the DNS server admin would be able to know that our VPN server made a query to minecraft.com at a certain time. Besides that, no other information about the end user is given out and you also have plausible deniability as many users use a server at one time. Therefore although your ISP does not know what you’re doing if someone is very determined in trying to unmask your identity and has the legal resources to do it, they theoretically can get the DNS server admin to help narrow down their search. It’s still a long way to go to unmasking your identity since they would be unable to identify which user within the VPN server at that time but assuming the site you visit is very unique and they have other information tying to you accessing such a site (for example if they have seized your computer) it is further evidence that can be used against you. Yes, this is quite an extreme situation and for the average user, it isn’t important but we realized that if we can take steps to improve the privacy of our customers, we should.

How BolehVPN is Improving

Many other VPN providers also use Google DNS or OpenDNS or their server provider’s own DNS but we are taking the step of hosting our own DNS servers so that none of your information goes to third parties you may not trust. Meaning, any potential identifying data is only kept within BolehVPN and not to any other third party provider. Also, any DNS leak test would also not show our company’s name but the original server provider’s one which further doesn’t reveal that you’re using a VPN.

These changes are not trivial as we do have to properly secure these DNS servers and ensure they can handle any loads thrown at it but we are already deploying this on a few of our servers to test performance and will be rolling out these changes over the coming weeks and will post an announcement once it’s completed.. We don’t forsee any major difficulties with this.

Also for those asking why don’t we use DNSCrypt, it doesn’t really add any advantage to the way we are setting it up. You are still free to use DNSCrypt independently if you prefer to continue using that.

What Do You Need to Do?

Nothing, the changes will roll out and you may experience a very brief disconnection and upon re-establishing of the connection, the new DNS servers will be pushed to you unless you chose to specify them manually. Do feel free to share your opinions and comments!

 

Friday, December 26th, 2014

Donate to the Flood Victims in Malaysia

Please do consider donating to Mercy Malaysia via their Donation Form. More than 100,000 people have been displaced due to the floods and many are in need of basic supplies.

Malaysian Floods

I have started the ball rolling with a RM1,000.00 donation. Now’s not the time to politicize, but to take action. Come on Rakyat, you’re better than that!

mercymalaysia

Wednesday, December 24th, 2014

Merry Christmas from BolehVPN!

animated-christmas-cat-[WapVilla.CoM]Wishing everyone a merry Christmas and happy holidays!

We will still be operational but support queries will be slightly slower.

Be safe in real life as you are using BolehVPN ;P Ho Ho Ho!

 

Thursday, December 18th, 2014

BolehVPN and GST Tax

This is just a quick heads up that starting 1 April 2015, BolehVPN will be charging 6% GST for its Malaysian customers or amounts paid in RM. We’ll have detailed updates on pricing adjustments (if any) as soon we confirm some things on our end.

This will not affect international customers coming from an IP that is outside Malaysia.

Tuesday, November 25th, 2014

Black Friday Deals from BolehVPN

Black-Friday-Deals1BitCoin Black Friday

We are happy to provide a 10% discount for all purchases made using BitCoin during the promotional period which is 28th November 2014 – 1st December 2014.

Check out BitCoinBlackFriday.com for a whole list of other merchants offering promotions for BitCoin use and spread the love!

BestVPN Deal

We are also proud to partner with BestVPN.com to offer 15% additional days on any account purchased during the same period (28th November 2014 – 1st December 2014) if they send after purchase to our e-mail [sales [a] bolehvpn.net] with the following:

Subject: BestVPN Black Friday BolehVPN
Body:

BolehVPN Username:
Invoice ID:
Package Purchased:

For a full list of BestVPN.com’s promotions head on here.


-->