Stop Using Tor With VPNs

00:00

a couple of weeks ago Network Chuck

00:01

posted this video to his channel titled

00:03

how to access the dark web in 2023 three

00:07

layers and this is already one of the

00:09

more popular videos that he's uploaded

00:11

this year at least by view count and of

00:13

course Network Chuck has one of the most

00:15

popular Tech tutorial channels on the

00:18

whole platform I mean his hacking of the

00:19

YouTube algorithm has been way more

00:22

impressive than most other channels in

00:24

this space and his production quality is

00:26

actually way better as well but anyway

00:29

this how to to access the dark Web video

00:32

it really stood out to me because the

00:34

first layer is pretty basic right you're

00:37

connecting to the tour browser on

00:38

Windows that's pretty normal but then

00:41

for Layer Two we're involving a VPN

00:44

we're first connecting to a VPN and then

00:46

to the tour browser now whether or not

00:49

you should use a VPN with tour is

00:51

actually one of the most common

00:52

questions asked about tour in recent

00:54

years in fact if you Google that

00:56

question you're going to get like 20

00:58

million results and when you look at

01:00

results from the official tour forums

01:03

and from the tour subreddit most of the

01:06

time the people there are going to tell

01:07

you no don't do this it's not necessary

01:10

and it's possibly even a bad idea so why

01:15

is it that our boy Chuck is recommending

01:17

that we involve a VPN for layer 2 and

01:21

layer three dark web activity is he

01:24

purposefully trying to get people that

01:26

want to visit the dark web to do so in

01:29

an unsafe way or people want to increase

01:31

their security is he trying to make them

01:33

unsafe probably not but I'm going to go

01:36

over the details of using a VPN with

01:38

tour so that you can make an informed

01:41

decision for yourself if you want to use

01:43

a configuration that even the tour devs

01:46

don't recommend so tour and vpns do the

01:50

same thing in terms of encrypting

01:52

traffic and changing your IP address but

01:55

T does this three times over because

01:58

you're going through three different

01:59

hops three different servers with three

02:01

different layers of encryption so tour

02:03

is kind of like chaining three different

02:05

VPN servers together except it's even

02:07

better than that because of the

02:08

decentralized hosting anybody with an

02:11

internet connection and a computer can

02:13

run a tour relay I've done so myself so

02:17

if you connect to tour one hop might

02:19

belong to an FBI controlled server the

02:22

second hop might be my server and the

02:24

third might be a KGB controlled server

02:26

but the odds of us three getting

02:29

together and comparing our traffic logs

02:31

on our servers in order to De anonymize

02:33

you is very very slim and even if it did

02:37

happen T establishes new circuits every

02:40

10 minutes meaning every 10 minutes or

02:42

so your traffic is going through three

02:44

completely different servers so tour is

02:47

clearly much much better at keeping your

02:50

traffic private and Anonymous than using

02:52

one or many vpns chain together but what

02:56

if you wanted to hide the fact that you

02:58

are using tour in in the first place

03:00

from your ISP if you connect to tour

03:03

then your ISP can see that you're doing

03:05

that and maybe that's an issue that evpn

03:08

can mitigate well first let's establish

03:11

what our threat model here is because

03:13

the way I see it there's really only two

03:16

kinds of people who should be concerned

03:17

with hiding the fact that they're using

03:19

tour from their ISP and that is people

03:22

that are actually doing crime or you

03:24

know organizing protest on tour or

03:27

anything that might actually cause a

03:29

global entity like interpole to come

03:31

after you or if you're in a country like

03:35

Iran or China where they block

03:37

connections to T and so you have to go

03:39

through some kind of Bridge to get to

03:41

tour in the first place well for the

03:44

folks in countries like Iran and China

03:47

Tor actually has Aus gated bridges that

03:50

serve that very purpose there are

03:52

servers that put a great deal of effort

03:55

into trying to hide the fact that

03:57

they're associated with the tour Network

03:58

they're not on a list that you can look

04:00

up their traffic doesn't really look

04:01

like tour traffic um so blocking those

04:05

or is pretty difficult but it is

04:08

possible to identify these off you

04:10

skated Bridges with very aggressive

04:12

scanning and deep packet inspection and

04:14

this is actually something that China

04:17

has had a great deal of success with

04:19

doing in blocking tour with the great

04:22

firewall but they've also had a

04:24

tremendous amount of success with

04:25

blocking VPN connections because those

04:29

are just as easy to identify as a tour

04:32

Bridge there's no special

04:34

technology that makes it harder to

04:36

identify a VPN user than a tour user and

04:40

so the result is only vpns or the only

04:43

vpns that you can use in China are ones

04:46

where the government has approved them

04:48

which should make you ask some questions

04:51

like hey are they keeping logs on

04:53

Chinese citizens or not or you know are

04:56

these servers that the Chinese

04:57

government just has direct access access

04:59

to themselves uh so the only other ones

05:03

that you're able to connect to VPN wise

05:06

are ones that they haven't identified

05:09

yet ones that they haven't identified as

05:10

an unsanctioned VPN but they're going to

05:14

be just as difficult or just as easy to

05:17

identify as new ausc tour Bridges so I

05:20

don't really think you're gaining

05:22

anything by using a VPN if your country

05:25

censors tour now let's talk about people

05:28

that are using tour

05:30

uh who are likely to get targeted by

05:31

interpole or their government right

05:33

people who are criminals or whatever

05:36

would a VPN protect them probably not in

05:38

fact we actually have a lot of data

05:41

available to answer this question

05:42

because criminals on the dark web when

05:44

they get persecuted the techniques that

05:47

law enforcement used to catch them come

05:49

out in court records and 99% of the time

05:52

people get caught through very simple

05:54

opsc mistakes that had nothing to do

05:57

with tour like Dread pirate Roberts the

05:59

founder of Silk Road he got caught

06:01

because he signed up to a clear web drug

06:03

user Forum with his personal Gmail

06:05

account and he used it to advertise his

06:08

hidden service there and I think he also

06:10

used that same Gmail account on stack

06:12

Overflow to solicit help with building

06:14

the hidden Service uh pom pom purin so

06:18

he also revealed his real Gmail account

06:20

and private messages that he had with I

06:23

think it was omnipotent you know another

06:25

hacker several years ago so when the FBI

06:28

seized that other hacker 's website they

06:31

got the DMS and then they were able to

06:33

find that real email associated with pal

06:36

and there's been dozens of other cases

06:38

like this where people left traces

06:41

behind of their dark web activity they

06:43

didn't keep their clear web activity

06:45

completely separate from their dark web

06:47

activity so your ISP knowing that you

06:49

connect to tour sometimes that's not

06:52

going to be the piece of evidence that

06:54

gets you caught or makes you seem more

06:57

suspicious uh in fact a VPN that's

07:00

connecting to tour is going to stand out

07:03

way more than just you know a regular

07:05

Home Connection going directly to tour

07:08

and if your adversary is a global one

07:10

like interpole then they can monitor the

07:13

edge traffic of every tour node and

07:15

every VPN and every ISP and I can tell

07:18

you right now the most interesting

07:19

traffic is going to be those connections

07:21

going from a VPN to tour because

07:24

whoever's on the other end of that

07:25

traffic is very paranoid and really

07:28

doesn't want you to see what they're

07:30

doing so if I was a federal agent

07:33

observing all this Edge traffic the VPN

07:35

toour packets are going to be the first

07:37

ones that I'm going to try to break with

07:39

a quantum computer or better yet just

07:42

send some of our agents over to your VPN

07:44

provider tell them that I think they're

07:46

routing traffic for terrorist into the

07:48

dark web and your VPN provider is going

07:51

to comply they're going to give us

07:53

access to all the information that they

07:55

have on you which is going to be your

07:57

home IP address at the very least and if

08:00

you use nordvpn like Network Chuck here

08:03

I'm probably also going to get your

08:04

email address your full name and the

08:06

credit card that you use to sign up with

08:08

nordvpn with since Nord enforces kyc so

08:13

my conclusion with this mixing vpns with

08:16

tour idea is that it's a bad one

08:19

especially the way that Network Chuck

08:21

did it with using nordvpn which you know

08:24

that they're very hard to get an

08:26

anonymous subscription from uh you can't

08:28

pay them with cash or Monero and they

08:30

force you to create an account with your

08:32

email address and he's also using the

08:36

proprietary nordvpn app to connect to

08:39

Nord instead of putting their server

08:41

info into openvpn and connecting that

08:44

way so this is definitely not the way

08:46

that I would recommend to use a VPN

08:48

withour really I wouldn't recommend

08:50

doing that at all but if you're really

08:53

really wanted to for some reason uh I

08:56

would say use a VPN like mulvad that

08:58

accepts Monera and doesn't require you

09:00

to give them an email address in order

09:02

to create an account uh and even then I

09:06

don't really like using VPN apps because

09:08

of the added bloat that you know they

09:11

add to it but mad's app is at least GPL

09:15

licensed and earlier this year they

09:17

added support for Quantum resistant

09:19

tunnels in the app so at least with this

09:23

you can avoid revealing sensitive

09:25

information like your name and email to

09:28

get mulvad and then at least the bridge

09:30

that you're getting into the tour

09:32

network is going to be Quantum resistant

09:34

and you know won't be broken with a

09:36

quantum computer but you're still going

09:38

to stick out like a sore thumb because

09:41

millions of people are connecting

09:42

directly to the tour Network every

09:44

single day where while you can probably

09:47

count the people that are going into

09:49

tour through a Quantum resistant tunnel

09:51

on your fingers and toes and uh those

09:54

people they're going to be at the very

09:56

tip top of the fed's list of connections

09:59

to crack um or they might just use the

10:02

$5 wrench method you know nobody even

10:06

mulvad is going to take a smack with a

10:07

wrench for you so don't use vpns to

10:10

connect to tour it's unnecessary and

10:12

it's probably going to make you stick

10:14

out like a sore thumb and you know

10:17

instead of using vpns if you know

10:20

someone who is using a VPN to connect a

10:23

tour or just uses a VPN to hide their IP

10:25

from services that don't block tour

10:27

recommend them to just use tour like a

10:30

normal person so that their traffic can

10:32

be mixed with the millions of other

10:34

people that are using tour normally

10:36

every single day which is a big part of

10:38

what actually makes this network work

10:40

you everyone's connection looks the same

10:43

uh so you can't Point anyone out and

10:44

also that $5 a month that you're going

10:47

to pay for an average VPN connection

10:49

could easily go towards you running your

10:52

own tour relay on a cheap VPS which

10:54

helps everybody that's using the tour

10:56

network uh since it further reduces is

10:59

the likelihood of all three hops being

11:01

government controlled servers for the

11:03

cost of one spooky VPN subscription you

11:07

could be routing a couple terabytes of

11:09

traffic every single month for other

11:11

privacy enthusiasts like you you enjoyed

11:14

this video please like it and share it

11:16

in order to hack the algorithm follow me

11:18

on Odyssey and get yourself the come and

11:22

find it hoodie it's starting to get cold

11:24

I've actually been wearing it every

11:25

single day on the farm for the past

11:27

couple of weeks so get the hoodie so

11:29

that you can keep yourself warm and

11:31

support my channel by getting it on

11:33

base. win and you also get 10% off

11:35

storewide when you use Monero XMR at

11:38

checkout have a great day