You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

User profile for user: PixelRogue1
PixelRogue1 Author
User level: Level 1
36 points

Why don't "VPNs don't protect you like they think you do."?

Quoting from an older thread [KT] "Using a VPN to access the Internet is counterproductive. It does NOT provide you with any additional security. It routes all of your Internet traffic through a single point, the VPN provider, who then has access to all of your data traffic.


VPNs are intended to provide a secure connection from your computer or device to a private network, such as your employer or school.


----

Yes, there is your own private VPN (home or work) and then there would be the more public shared VPN services. There is an element of trust required in your VPN provider. Using a 3rd party VPN provider routes traffic through shared VPN ports. All your traffic is routed through a single point w/everyone else using that location/port/protocol. Is it bulletproof, no. Is it better than your broadband and/or cell data providers having it (to me, absolutely.) VPNs also let you switch that around so you can pick different locations and ports - no something yo can do w/your personal data provider.


VPNS also minimize countless number of hidden trackers that track not just your IP but also through your apps (browsers and such.) They offer ad blockers. Virus protection. Lot of extra value beyond simply masking an IP. I don't think companies should be allowed to track, manage, sell/share your behavior outside their own domain - but they are allowed and the do.


Yes, many services actively pursue blocking VPNs (in particular by subscribing to IP blacklists) to minimize VPN usage. While true bad actors often use VPNs, bad actors also use cars yet banks still support parking - because vehicles are good for everyone, not just bad actors. Same for VPN - VPNs are good for everyone.

So yes, VPNs require futzing w/settings for certain services, knowing which locations work for certain banks and such...and while a pain well worth the extra bit of effort.


One point to share - when using VPN on an iPhone keep in mind that the VPN protects ONE data source, not multiple...so lets say you are on your home wifi AND have your cellular data on - VPN will protect one (which I think is the wifi) and your cellular IP would be fully exposed. That is a tricky undocumented feature.


Here on the Apple Forums, VPN is a four-letter word. I would like to learn more around how VPNs do not protect us like we think they do....w/o the presumption that everyone using a VPN thinks a VPN is an easy bullet proof solution for privacy. It is a tool, not a single solution. It is a valid useful tool.

MacBook Pro (M4)

Posted on Nov 25, 2024 5:17 PM

Reply
Question marked as Top-ranking reply
User profile for user: BobTheFisherman
BobTheFisherman
User level: Level 10
81,739 points

Posted on Nov 25, 2024 6:10 PM

PixelRogue1 wrote:

Appreciate the link. Little useful but also quite light.

Personally, on open networks all the time which is one other key drivers. It isn't bullet proof, no fence is impenetrable...it is a tool to help. If anyone things your data providers aren't logging, think again. So even if your VPN is logging, it isn't any worse than your data provider.

Waiting for the ability to mask MAC ID's on iOS (a benefit that exists for Android) as that is another critical component.

I think you have a basic misunderstanding of what a VPN provides. If you use for example secure protocols your data is protected without a VPN. So, for example, if you use a browser with https protocol to access a secure server then your data is encrypted. If you use an insecure protocol like http, your data is viewable at all nodes through which the data is routed.

If you use a VPN, the VPN provider has access to all your data to do with what they wish. If you are using an insecure protocol, the VPN provider can get and sell all your data. Then the VPN provider re transmits your data insecurely to its final destination. Your VPN provider does not have special secure routes to an insecure site. So, the VPN provider does exactly what you do when you send data to a destination except they intercept the data for their use.

The only valid use of a VPN is to provide a secure point-to-point tunnel to a workplace or other private network.

Don't be fooled by the third party VPN advertisements and false claims.

View in context
5 replies
Question marked as Top-ranking reply
User profile for user: BobTheFisherman
BobTheFisherman
User level: Level 10
81,739 points

Nov 25, 2024 6:10 PM in response to PixelRogue1

PixelRogue1 wrote:

Appreciate the link. Little useful but also quite light.

Personally, on open networks all the time which is one other key drivers. It isn't bullet proof, no fence is impenetrable...it is a tool to help. If anyone things your data providers aren't logging, think again. So even if your VPN is logging, it isn't any worse than your data provider.

Waiting for the ability to mask MAC ID's on iOS (a benefit that exists for Android) as that is another critical component.

I think you have a basic misunderstanding of what a VPN provides. If you use for example secure protocols your data is protected without a VPN. So, for example, if you use a browser with https protocol to access a secure server then your data is encrypted. If you use an insecure protocol like http, your data is viewable at all nodes through which the data is routed.

If you use a VPN, the VPN provider has access to all your data to do with what they wish. If you are using an insecure protocol, the VPN provider can get and sell all your data. Then the VPN provider re transmits your data insecurely to its final destination. Your VPN provider does not have special secure routes to an insecure site. So, the VPN provider does exactly what you do when you send data to a destination except they intercept the data for their use.

The only valid use of a VPN is to provide a secure point-to-point tunnel to a workplace or other private network.

Don't be fooled by the third party VPN advertisements and false claims.

Reply
User profile for user: MrHoffman
MrHoffman
Community+ 2024
User level: Level 10
126,325 points

Nov 25, 2024 6:51 PM in response to PixelRogue1

i’d suggest acquiring a better understanding of TLS-based security, of iCloud+ Private Relay, and of both sorts of VPNs, and preferably that knowledge that not from the endemic advertising, more advertising, and the VPN-owned VPN reviews.


I do understand that some folks want their network metadata collected by sketchy providers, and want unnecessary added overhead for a connection and that overhead that contributing negligible additional benefits over the existing connection security, and all that configured in a way that is perfect for collecting personally-identified metadata, of course.


Apple has been using random Wi-Fi MAC addresses for a while, as well: Wi-Fi privacy - Apple Support

Reply
User profile for user: etresoft
etresoft
User level: Level 9
51,090 points

Nov 25, 2024 5:52 PM in response to PixelRogue1

PixelRogue1 wrote:

Here on the Apple Forums, VPN is a four-letter word. I would like to learn more around how VPNs do not protect us like we think they do....w/o the presumption that everyone using a VPN thinks a VPN is an easy bullet proof solution for privacy. It is a tool, not a single solution. It is a valid useful tool.

It's even less than that. It's just an acronym. VPNs are one of the most popular forms scam and spyware apps these days. Everyone always thinks their own chosen VPN service is safe and reliable. The stronger their feelings about that, the more likely they are to use one of the worst examples.

Reply
User profile for user: PixelRogue1
PixelRogue1 Author
User level: Level 1
36 points

Nov 25, 2024 5:56 PM in response to muguy

Appreciate the link. Little useful but also quite light.


Personally, on open networks all the time which is one other key drivers. It isn't bullet proof, no fence is impenetrable...it is a tool to help. If anyone things your data providers aren't logging, think again. So even if your VPN is logging, it isn't any worse than your data provider.


Waiting for the ability to mask MAC ID's on iOS (a benefit that exists for Android) as that is another critical component.

Reply

Why don't "VPNs don't protect you like they think you do."?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up