• Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Torrents

    Security and safety of VPN torrenting - "couldn't establish secure connection" on NordVPN Windows client

    BitTorrent & Internet News
    3
    6
    88
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      teefup last edited by teefup

      So I have torrented much of my life and back in the day on napster and limewire there wasn't a lot of enforcement. That's different these days, and about 10 years ago I heard of a dude I know got busted for torrenting porn. I stopped at that point, but I wanted to start again.

      So the steps I took are as follows:

      • VPN client always-on
      • qBittorrent advanced setting -> always use VPN network interface, so even without a kill switch (which is also turned on), qbittorrent has no access to any other network interface, should the VPN go down

      This covers me, right? The issue I have is I was seeding for some ~1 week and I come in one day and see this "couldn't establish a secure connection" message. I assume this means the connection between myself and the NordVPN server itself.

      See here for an example of what this popup looks like: https://www.reddit.com/r/nordvpn/comments/o9he2u/couldnt_establish_a_secure_connection_whats_this/

      When I got back, I have no idea when this had happened. I dont know if the NordVPN client tried connecting (it moves servers sometimes automatically, I think) and the server was man-in-the-middled and then it just passed that one and tried another or if it was connected at all. I didn't have the presence of mind to check much when it happened, I just clicked "Do not trust".

      Does anyone know exactly what's going on here? It's got me freaked out thinking my ISP is trying to MITM attack me.

      bi4smooth 1 Reply Last reply Reply Quote 0
      • bi4smooth
        bi4smooth @teefup last edited by

        @teefup

        You are right to be concerned - however, I have also seen this happen with some AV systems (specifically, Avast)

        The point is that the AV system doesn't think you're using SSL, and so they're trying to force you to use SSL - THEIR SSL - and that's not the way SSL works (actually, technically, SSL is dead - it's really TLS, but everyone still SAYS SSL even when they mean TLS)

        So, yes - you're seeing a man-in-the-middle warning, and it won't work because that's one of the things SSL is SUPPOSED to protect you from!

        To solve the issue, you need to find the cause...

        T 1 Reply Last reply Reply Quote 1
        • T
          teefup @bi4smooth last edited by

          @bi4smooth ye i mean i have clients that have deprecated sslv3 in lieu of tls 1.2 at this point and i think there's a 1.3 so i get that part. i just am concerned with the cert attempt that almost seems like a reverse proxy. like i said idk where it came from. i scan exes and shit by hash since like 2012 and dont use antivirus and windows defender is the most i deal with. most compromises are done by people back dooring or phishing, not getting you to start some random executable these days. but in any case, im new to vpns and a bit wary even taking precaution bc i have my doubts.

          bi4smooth 1 Reply Last reply Reply Quote 0
          • bi4smooth
            bi4smooth @teefup last edited by

            @teefup said in Security and safety of VPN torrenting - "couldn't establish secure connection" on NordVPN Windows client:

            @bi4smooth ye i mean i have clients that have deprecated sslv3 in lieu of tls 1.2 at this point and i think there's a 1.3 so i get that part. i just am concerned with the cert attempt that almost seems like a reverse proxy. like i said idk where it came from. i scan exes and shit by hash since like 2012 and dont use antivirus and windows defender is the most i deal with. most compromises are done by people back dooring or phishing, not getting you to start some random executable these days. but in any case, im new to vpns and a bit wary even taking precaution bc i have my doubts.

            I have used NORDVpn for years... Their SOCKS5 proxy systems appear to have been largely disabled, but if you're in Windows and use the App, it does a nice job of being all-but transparent.

            I know from comments they've made that some staffers use NordVPN as well: raphjd and WikiDude come to mind.

            If you're using the NordVPN client, then limiting your qBittorrent to the NordVPN "adapter" is a good idea, but you shouldn't need any other special setings. (ASSUMING you've already hardcoded your DNS to a system like CloudFlare's 1.1.1.1 & 1.0.0.1)

            Mrker1234 1 Reply Last reply Reply Quote 1
            • Mrker1234
              Mrker1234 @bi4smooth last edited by

              @bi4smooth I've seen rumors that the NordVPN Socks5 servers being disabled, but I have not had major issues with them and have literally traded several terabytes using it in just the past couple of months.

              I'm using atlanta.us.socks.nordhold.net right now and leave it set in qBittorrent on my iMac.

              I'm set up using Nord's SmartDNS to allow better access to protected foreign sites like BBC, not Cloudflare. I don't think that should affect the Socks5 connecting, just noting it is different.

              1 Reply Last reply Reply Quote 1
              • T
                teefup last edited by

                @bi4smooth @Mrker1234 thanks for the responses guys. i guess im good. talked to a friend of mine as well and he said long as the client is asking and im not accepting the cert im fine

                1 Reply Last reply Reply Quote 0
                • 1 / 1
                • First post
                  Last post