Dangers of using expressvpn?

.

.git/config2021-10-08 14:35:52

VPN

.git/config, 2021-10-08 14:35:52

Recently, a big hate towards expressvpn has begun, in connection with which I thought about what risks they subscribe to when using it.

1. Owners know where they come from (ip address) and where I go (dns requests, domains within https, but not specific pages on these domains).
2. They will not be able to change the traffic in https so that I do not notice. Provided that there are no 0-day vulnerabilities in the browser, in which the certificate verification will be ignored.
3. Merge my site preferences - easily, but again, nothing more than domains, no specific pages.
4. With http everything is clear, but they are vanishingly few and they are immediately visible in the address bar.
5. There is a big nuance. They require their own build of openvpn to be installed, all the risks are clear here, right down to backdoors in the client to gain access to the OS.

What am I missing?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

R

Ronald McDonald, 2021-10-08
@Zoominger

but not specific pages on those domains).

Why do you think so?

They will not be able to change the traffic in https so that I do not notice.

Lol. Can.

Dumping my site preferences is easy, but again, nothing more than domains, no specific pages.

See point 1.

What am I missing?

alternative services. They could buy VDS and raise their own.

C

CityCat4, 2021-10-08
@CityCat4

but not specific pages on those domains).

Otkel such confidence? You haven't seen the code for this service, you can't tell how it works. Therefore, the worst is assumed - the service maintains a full detailed log

nothing more than domains, no specific pages.

Once again - you have not seen the code of this "vpn", you do not know how it works. Therefore, it should be assumed that everyone can merge.