kennwhite · August 3, 2025 05:20 · May 24, 2018 · Jul 21, 2017 · Sep 9, 2016 · Aug 22, 2016
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -2,7 +2,7 @@ Most VPN Services are Terrible
 ==
 
 Short version: I strongly *do not* recommend using any of these providers. You are, of course, free to use whatever you like.
-My TL;DR advice: Roll your own and use [Algo](https://github.com/trailofbits/algo/blob/master/README.md) or [Streisand](https://github.com/jlund/streisand/blob/master/README.md). For messaging & voice, use [Signal](https://whispersystems.org/). For increased anonymity, use [Tor](https://www.torproject.org/) for desktop (though recognize that doing so may actually [put you at greater risk](https://georgianpartners.com/the-problem-with-the-tor-network-and-commercial-vpns/)), and [Onion Browser](https://mike.tig.as/onionbrowser/) for mobile.
+My TL;DR advice: Roll your own and use [Algo](https://github.com/trailofbits/algo/blob/master/README.md) or [Streisand](https://github.com/StreisandEffect/streisand/blob/master/README.md). For messaging & voice, use [Signal](https://whispersystems.org/). For increased anonymity, use [Tor](https://www.torproject.org/) for desktop (though recognize that doing so may actually [put you at greater risk](https://georgianpartners.com/the-problem-with-the-tor-network-and-commercial-vpns/)), and [Onion Browser](https://mike.tig.as/onionbrowser/) for mobile.
 
 
 This mini-rant came on the heels of an interesting twitter discussion:

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -2,7 +2,7 @@ Most VPN Services are Terrible
 ==
 
 Short version: I strongly *do not* recommend using any of these providers. You are, of course, free to use whatever you like.
-My TL;DR advice: Roll your own and use [Algo](https://github.com/trailofbits/algo/blob/master/README.md) or [Streisand](https://github.com/jlund/streisand/blob/master/README.md). For messaging & voice, use [Signal](https://whispersystems.org/). For increasing anonymity, use [Tor Browser](https://www.torproject.org/projects/torbrowser.html.en) for desktop, and [Onion Browser](https://mike.tig.as/onionbrowser/) for mobile.
+My TL;DR advice: Roll your own and use [Algo](https://github.com/trailofbits/algo/blob/master/README.md) or [Streisand](https://github.com/jlund/streisand/blob/master/README.md). For messaging & voice, use [Signal](https://whispersystems.org/). For increased anonymity, use [Tor](https://www.torproject.org/) for desktop (though recognize that doing so may actually [put you at greater risk](https://georgianpartners.com/the-problem-with-the-tor-network-and-commercial-vpns/)), and [Onion Browser](https://mike.tig.as/onionbrowser/) for mobile.
 
 
 This mini-rant came on the heels of an interesting twitter discussion:

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -28,6 +28,7 @@ Provider / known "Secret" Key
     UnblockVPN / xunblock4me  
     VPNReactor / VPNReactor  
 
+
 Yes, I know. Many/most of these offer OpenVPN, or special clients for IPSec. But for all of the above, they are actively placing a significant portion of their user base (particularly those with older Androids and desktops) at risk by not using per-user PSKs. If your threat model is streaming BBC or helping your cousin geo-shift Hulu, go wild and plug into the Mad Max-esque Thunderdome commons and take your chances. If you're a dissident in Tehran or Riyadh, be extremely cautious of any of these providers.
 
 Lastly, a VPN Hall of Shame honorary mention goes to `DoubleHop.me`* on general principle for blatant sexism and utter insincerity. Their privacy/legal policy section includes LGBT slurs and literally has your-mom jokes. But even ignoring that, as of this writing, there is virtually zero technical information provided, only YouTube videos apparently intended for 10 year-old boys.

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -28,7 +28,7 @@ Provider / known "Secret" Key
     UnblockVPN / xunblock4me  
     VPNReactor / VPNReactor  
 
-Yes, I know. Many/most of these offer OpenVPN, or special clients for IPSec. But for all of the above, they are actively placing a significant portion of their user base (particularly older Androids and desktops) at risk by not using per-user PSKs. If your threat model is streaming BBC or helping your cousin geo-shift Hulu, go wild and plug into the Mad Max-esque Thunderdome commons and take your chances. If you're a dissident in Tehran or Riyadh, be extremely cautious of any of these providers.
+Yes, I know. Many/most of these offer OpenVPN, or special clients for IPSec. But for all of the above, they are actively placing a significant portion of their user base (particularly those with older Androids and desktops) at risk by not using per-user PSKs. If your threat model is streaming BBC or helping your cousin geo-shift Hulu, go wild and plug into the Mad Max-esque Thunderdome commons and take your chances. If you're a dissident in Tehran or Riyadh, be extremely cautious of any of these providers.
 
 Lastly, a VPN Hall of Shame honorary mention goes to `DoubleHop.me`* on general principle for blatant sexism and utter insincerity. Their privacy/legal policy section includes LGBT slurs and literally has your-mom jokes. But even ignoring that, as of this writing, there is virtually zero technical information provided, only YouTube videos apparently intended for 10 year-old boys.
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -1,12 +1,17 @@
-VPN Pre-Shared Key matchup Bingo
---
+Most VPN Services are Terrible
+==
+
+Short version: I strongly *do not* recommend using any of these providers. You are, of course, free to use whatever you like.
+My TL;DR advice: Roll your own and use [Algo](https://github.com/trailofbits/algo/blob/master/README.md) or [Streisand](https://github.com/jlund/streisand/blob/master/README.md). For messaging & voice, use [Signal](https://whispersystems.org/). For increasing anonymity, use [Tor Browser](https://www.torproject.org/projects/torbrowser.html.en) for desktop, and [Onion Browser](https://mike.tig.as/onionbrowser/) for mobile.
 
-Short version: Use Streisand. Use Tor. Use Signal.
 
 This mini-rant came on the heels of an interesting twitter discussion:
 https://twitter.com/kennwhite/status/591074055018582016
 
-Provider / "Secret" Key  
+Again I strongly do *not* recommend using any of these providers. 
+
+
+Provider / known "Secret" Key 
 
     Astril / way2stars  
     EarthVPN / earthvpn
@@ -23,8 +28,9 @@ Provider / "Secret" Key
     UnblockVPN / xunblock4me  
     VPNReactor / VPNReactor  
 
+Yes, I know. Many/most of these offer OpenVPN, or special clients for IPSec. But for all of the above, they are actively placing a significant portion of their user base (particularly older Androids and desktops) at risk by not using per-user PSKs. If your threat model is streaming BBC or helping your cousin geo-shift Hulu, go wild and plug into the Mad Max-esque Thunderdome commons and take your chances. If you're a dissident in Tehran or Riyadh, be extremely cautious of any of these providers.
 
-*Honorary mention in the VPN Hall of Shame, on general principle (for blatant sexism and utter insincerity): `DoubleHop.me`
+Lastly, a VPN Hall of Shame honorary mention goes to `DoubleHop.me`* on general principle for blatant sexism and utter insincerity. Their privacy/legal policy section includes LGBT slurs and literally has your-mom jokes. But even ignoring that, as of this writing, there is virtually zero technical information provided, only YouTube videos apparently intended for 10 year-old boys.
 
 Moral of the story: Don't believe everything you read on, say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -54,7 +54,7 @@ http://www.earthvpn.com/android-l2tp-setup-guide/    Archive: http://archive.is/
 
 https://nordvpn.com/tutorials/android/l2tpipsec/ (scroll down) Archive: http://archive.is/BQumt
 
-https://help.tigervpn.com/support/search/solutions?term=shared+secret+tigerVPN  Aarhive: http://archive.is/xZ136
+https://help.tigervpn.com/support/search/solutions?term=shared+secret+tigerVPN  Archive: http://archive.is/xZ136
 
 https://www.slickvpn.com/tutorials/ipsec-for-iphone/ and http://archive.is/h4rI9
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -18,7 +18,8 @@ Provider / "Secret" Key
     PrivateInternetAccess (PIA) / mysafety  
     PureVPN / 12345678  
     SlickVPN / gogoVPN
-    TorGuard / torguard  
+    TorGuard / torguard 
+    TigerVPN / tigerVPN
     UnblockVPN / xunblock4me  
     VPNReactor / VPNReactor  
 
@@ -53,6 +54,10 @@ http://www.earthvpn.com/android-l2tp-setup-guide/    Archive: http://archive.is/
 
 https://nordvpn.com/tutorials/android/l2tpipsec/ (scroll down) Archive: http://archive.is/BQumt
 
-*DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
+https://help.tigervpn.com/support/search/solutions?term=shared+secret+tigerVPN  Aarhive: http://archive.is/xZ136
 
 https://www.slickvpn.com/tutorials/ipsec-for-iphone/ and http://archive.is/h4rI9
+
+
+*DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
+
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -1,23 +1,27 @@
 VPN Pre-Shared Key matchup Bingo
 --
 
+Short version: Use Streisand. Use Tor. Use Signal.
+
 This mini-rant came on the heels of an interesting twitter discussion:
 https://twitter.com/kennwhite/status/591074055018582016
 
 Provider / "Secret" Key  
 
-    GoldenFrog / thisisourkey  
+    Astril / way2stars  
+    EarthVPN / earthvpn
     GFwVPN / gfwvpn  
-    VPNReactor / VPNReactor  
-    UnblockVPN / xunblock4me  
+    GoldenFrog / thisisourkey  
     IBVPN / ibVPNsharedPSK!  
-    Astril / way2stars  
-    PureVPN / 12345678  
-    PrivateInternetAccess (PIA) / mysafety  
-    TorGuard / torguard  
     IPVanish / ipvanish  
-    EarthVPN / earthvpn
     NordVPN  / nordvpn
+    PrivateInternetAccess (PIA) / mysafety  
+    PureVPN / 12345678  
+    SlickVPN / gogoVPN
+    TorGuard / torguard  
+    UnblockVPN / xunblock4me  
+    VPNReactor / VPNReactor  
+
 
 *Honorary mention in the VPN Hall of Shame, on general principle (for blatant sexism and utter insincerity): `DoubleHop.me`
 
@@ -51,3 +55,4 @@ https://nordvpn.com/tutorials/android/l2tpipsec/ (scroll down) Archive: http://a
 
 *DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
 
+https://www.slickvpn.com/tutorials/ipsec-for-iphone/ and http://archive.is/h4rI9
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -26,15 +26,28 @@ Moral of the story: Don't believe everything you read on, say, TorrentFreak and
 Citations:
 
 https://www.google.com/#q=goldenfrog+thisisourkey  Archive: http://archive.is/qlrLK
+
 http://www.gfwvpn.com/?q=node/224  Archive: http://archive.is/EdpFV
+
 https://www.vpnreactor.com/android_l2tp_ipsec.html  Archive: http://archive.is/uwJvk
+
 http://unblockvpn.com/support/how-to-set-up-l2tp-on-the-android.html Archive: http://archive.is/4To5Y
+
 http://www.ibvpn.com/billing/knowledgebase/34/Set-up-the-VPN-connection-on-Android-handsets.html  Archive: http://archive.is/srptW
+
 https://www.astrill.com/knowledge-base/50/L2TP-IPSec-PSK---How-to-configure-L2TP-IPSec-on-Android.html  Archive:http://archive.is/PZpRU
+
 http://billing.purevpn.com/knowledgebase.php?action=displayarticle&id=33  Archive: http://archive.is/R4JTi
+
 https://www.privateinternetaccess.com/pages/client-support/  Archive: http://archive.is/U1bkL
+
 http://torguard.net/knowledgebase.php?action=displayarticle&id=58  Archive: http://archive.is/iKJjl
+
 https://www.ipvanish.com/visualguides/L2TP/Android/  Archive: http://imgur.com/IQU1mdg
+
 http://www.earthvpn.com/android-l2tp-setup-guide/    Archive: http://archive.is/roKtf
+
 https://nordvpn.com/tutorials/android/l2tpipsec/ (scroll down) Archive: http://archive.is/BQumt
-DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
+
+*DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
+
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -19,7 +19,7 @@ Provider / "Secret" Key
     EarthVPN / earthvpn
     NordVPN  / nordvpn
 
-*Honorary mention in the VPN Hall of Shame, on general principle (for blatant sexism and utter insincerity): DoubleHop.me
+*Honorary mention in the VPN Hall of Shame, on general principle (for blatant sexism and utter insincerity): `DoubleHop.me`
 
 Moral of the story: Don't believe everything you read on, say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -13,23 +13,28 @@ Provider / "Secret" Key
     IBVPN / ibVPNsharedPSK!  
     Astril / way2stars  
     PureVPN / 12345678  
-    PrivateInternetAccess / mysafety  
+    PrivateInternetAccess (PIA) / mysafety  
     TorGuard / torguard  
     IPVanish / ipvanish  
     EarthVPN / earthvpn
+    NordVPN  / nordvpn
+
+*Honorary mention in the VPN Hall of Shame, on general principle (for blatant sexism and utter insincerity): DoubleHop.me
 
 Moral of the story: Don't believe everything you read on, say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 
 Citations:
 
-https://www.google.com/#q=goldenfrog+thisisourkey  
-http://www.gfwvpn.com/?q=node/224  
-https://www.vpnreactor.com/android_l2tp_ipsec.html  
-http://unblockvpn.com/support/how-to-set-up-l2tp-on-the-android.html  
-http://www.ibvpn.com/billing/knowledgebase/34/Set-up-the-VPN-connection-on-Android-handsets.html  
-https://www.astrill.com/knowledge-base/50/L2TP-IPSec-PSK---How-to-configure-L2TP-IPSec-on-Android.html  
-http://billing.purevpn.com/knowledgebase.php?action=displayarticle&id=33  
-https://www.privateinternetaccess.com/pages/client-support/  
-http://torguard.net/knowledgebase.php?action=displayarticle&id=58  
-https://www.ipvanish.com/visualguides/L2TP/Android/  
-http://www.earthvpn.com/android-l2tp-setup-guide/    
+https://www.google.com/#q=goldenfrog+thisisourkey  Archive: http://archive.is/qlrLK
+http://www.gfwvpn.com/?q=node/224  Archive: http://archive.is/EdpFV
+https://www.vpnreactor.com/android_l2tp_ipsec.html  Archive: http://archive.is/uwJvk
+http://unblockvpn.com/support/how-to-set-up-l2tp-on-the-android.html Archive: http://archive.is/4To5Y
+http://www.ibvpn.com/billing/knowledgebase/34/Set-up-the-VPN-connection-on-Android-handsets.html  Archive: http://archive.is/srptW
+https://www.astrill.com/knowledge-base/50/L2TP-IPSec-PSK---How-to-configure-L2TP-IPSec-on-Android.html  Archive:http://archive.is/PZpRU
+http://billing.purevpn.com/knowledgebase.php?action=displayarticle&id=33  Archive: http://archive.is/R4JTi
+https://www.privateinternetaccess.com/pages/client-support/  Archive: http://archive.is/U1bkL
+http://torguard.net/knowledgebase.php?action=displayarticle&id=58  Archive: http://archive.is/iKJjl
+https://www.ipvanish.com/visualguides/L2TP/Android/  Archive: http://imgur.com/IQU1mdg
+http://www.earthvpn.com/android-l2tp-setup-guide/    Archive: http://archive.is/roKtf
+https://nordvpn.com/tutorials/android/l2tpipsec/ (scroll down) Archive: http://archive.is/BQumt
+DoubleHop.me: Archive:http://archive.is/G11WQ and http://archive.is/MZgWE and http://imgur.com/Zn5HSIj
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -16,6 +16,7 @@ Provider / "Secret" Key
     PrivateInternetAccess / mysafety  
     TorGuard / torguard  
     IPVanish / ipvanish  
+    EarthVPN / earthvpn
 
 Moral of the story: Don't believe everything you read on, say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 
@@ -31,3 +32,4 @@ http://billing.purevpn.com/knowledgebase.php?action=displayarticle&id=33
 https://www.privateinternetaccess.com/pages/client-support/  
 http://torguard.net/knowledgebase.php?action=displayarticle&id=58  
 https://www.ipvanish.com/visualguides/L2TP/Android/  
+http://www.earthvpn.com/android-l2tp-setup-guide/    
diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -17,7 +17,7 @@ Provider / "Secret" Key
     TorGuard / torguard  
     IPVanish / ipvanish  
 
-Moral of the story: Don't believe everything you read, on say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
+Moral of the story: Don't believe everything you read on, say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 
 Citations:
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -17,7 +17,7 @@ Provider / "Secret" Key
     TorGuard / torguard  
     IPVanish / ipvanish  
 
-Moral of the story: Don't believe everything you read, on say, TorrentFreak and PCMagazine.
+Moral of the story: Don't believe everything you read, on say, TorrentFreak and PCMagazine. And (crucially) think about your threat model—are you guarding against amateur WiFi snoops at Starbucks or Marriott? Reducing identity monetization profiling by ISPs (ie ad tracking)? Minimizing exposure to government surveillance? Trying to be anonymous online? If the latter, a VPN won't help much.
 
 Citations:
 

diff --git a/vpn_psk_bingo.md b/vpn_psk_bingo.md
@@ -0,0 +1,33 @@
+VPN Pre-Shared Key matchup Bingo
+--
+
+This mini-rant came on the heels of an interesting twitter discussion:
+https://twitter.com/kennwhite/status/591074055018582016
+
+Provider / "Secret" Key  
+
+    GoldenFrog / thisisourkey  
+    GFwVPN / gfwvpn  
+    VPNReactor / VPNReactor  
+    UnblockVPN / xunblock4me  
+    IBVPN / ibVPNsharedPSK!  
+    Astril / way2stars  
+    PureVPN / 12345678  
+    PrivateInternetAccess / mysafety  
+    TorGuard / torguard  
+    IPVanish / ipvanish  
+
+Moral of the story: Don't believe everything you read, on say, TorrentFreak and PCMagazine.
+
+Citations:
+
+https://www.google.com/#q=goldenfrog+thisisourkey  
+http://www.gfwvpn.com/?q=node/224  
+https://www.vpnreactor.com/android_l2tp_ipsec.html  
+http://unblockvpn.com/support/how-to-set-up-l2tp-on-the-android.html  
+http://www.ibvpn.com/billing/knowledgebase/34/Set-up-the-VPN-connection-on-Android-handsets.html  
+https://www.astrill.com/knowledge-base/50/L2TP-IPSec-PSK---How-to-configure-L2TP-IPSec-on-Android.html  
+http://billing.purevpn.com/knowledgebase.php?action=displayarticle&id=33  
+https://www.privateinternetaccess.com/pages/client-support/  
+http://torguard.net/knowledgebase.php?action=displayarticle&id=58  
+https://www.ipvanish.com/visualguides/L2TP/Android/