VPN审核有什么意义吗？

9 comments

1. I think it's good to have an audit… The chances of fix bugs are higher and it shows to me they even risk negative reputation… To me it is a good sign if they do it… Always no bugs let me think something not real

2. Hey Tom, since I have 15-20 devices in my family, what vpn would you recommend to me?

3. The thing is we don't even know if audits were even done. Reminds me of the "audit' done to "prove" russians hacked clintons email server, later it was found that the entire document was just made up. No evidence at all.

4. Hey hello, tom! I loved your video bro. Thank you for always giving us good information about VPN's and how to choose the right VPN according to speed, functionality, transparency, and cost. I have a question to ask you related to TorGuard VPN bro, but I'm not sure if I should post my question here in the comments section because nothing is private on the internet. Is there a way that I can chat with you in private? I would be very grateful if you could help me answer my question. Thank you Tom, stay safe brother.

5. Hey Tom, I think audits do hold some value towards a VPN itself. It helps to build some trust in terms of logging and security etc… Nord was audited and even started a bug bounty program due to their 1 server breach and app security issues. In your video, the Mullvad security issues were mostly fixed, as your screenshot shows that some of those issues were fixed in 2018. No piece of software is 100% secure. We all use browsers everyday and I bet everyone would cringe if they saw all of the security issues going on there as well. So, as someone in the tech field, I can attest that testing, audits, and risk assessments of any software is very important. I know you don’t like Nord but they going in the right direction in terms of fixing their issues. The other top VPNs are also improving their practices as well. My two questions I would like to ask is if TorGuard or WeVPN has been audited at all? From my view, If a VPN has nothing on file for an audit to prove no logging, I tend to avoid them as there is nothing there to defend their claims. Even if the audit reports were bought, at least there was effort on the company to provide one vs nothing. Just my thoughts. I’m not affiliated with any VPN provider, just a Normal user.

6. I will agree audits of VPN companies today are comparable to frontier justice, e.g. the wild west. I would argue we need more audits. It may take a few years to standardize the audit process of a VPN company. This standardization would mean no matter the auditor, provided the standards were followed, the result can be trusted. How those standards are performed is the key. (See Enron and Arthur Andersen for how not to follow standards.) My hope is VPN audits can be as reliable as HIPAA and PCI audits.
   There are issues with audits, but without some external review, companies cannot know where they are deficient. Consumers of these products are only trusting sales and marketing materials for where to spend their money.
   I will also say auditing is not the only thing companies need to do to provide transparency. Being open about breaches and other security issues in a timely manner. I would like more software companies, not just VPNs, to do software audits. I would like more companies to embrace open source. While not a panacea that guarantees your code will be audited, it makes it easier for an audit to happen.

7. Hey can you do an updated video on VyprVPN? Their speeds seem to have improved a lot for me recently, it isn’t as fast as express vpn or we vpn, but its much better than before. I also feel that the application isn’t really very good and your current review doesn’t really reflect that, and your new application ranking system should reflect that.

8. Excellent Information and, content! Makes sense ✌️??

9. This is dumb
   What's the point then, it's just ridiculous and dumb
   What's the point then? Isn't there a way to figure out if an audit is legit? I don't even care that much about vpn audits, I am more worried about website and videogame audits, I first heard about audits from that "data is beautiful" graph.

   I also expect audits to be done periodically instead of just once, at least by bigger companies because they have the money to do it. A vpn though, I don't expect them to be rich, an audit doesn't really mean much and it's only something worth doing if you have spare money and you feel like it I guess.
   I expect an audit from companies like google, amazon, intel(or whoever is at the top owning mcafee and all these things), and maybe cloudflare. I also expect an audit from government sites, things that have to do with money, bank, cia, fbi, sensitive stuff, and financial stuff. At the end, I don't really know where to look or find these audits when someone claims they do audits periodically, and I guess there is more to audits than what we all know

Comments are closed.