Language Selection

English French German Italian Portuguese Spanish

ProtonVPN Applications are Now 100% Open Source

Filed under
OSS
Security

But can you trust your VPN service provider? On more than one occasion, the VPN providers have been caught logging, snooping or sharing data with third party. What to do in such cases?

I have shared a list of privacy focused VPNs for Linux in the past and ProtonVPN is one of them. The good news is that ProtonVPN has just open sourced all its apps and underwent an independent security audit.

Read more

More by Mark Wyciślik-Wilson/BetaNews

  • ProtonVPN goes open source to build trust

    The Swiss firm says that not only is it releasing the source code for its VPN tool on all platforms, but also that it has conducted an independent security audit. Created by CERN scientists, ProtonVPN has amassed millions of users since it launched in 2017 and the decision to open source the tool gives users and security exports the opportunity to analyze the tool very closely.

ProtonVPN apps handed to open source community

  • ProtonVPN apps handed to open source community in transparency push

    The Windows audit report (.PDF) identified two low-risk vulnerabilities related to jailbreaking and a lack of SSL certificate pinning. The macOS report (.PDF) uncovered no bugs at all, whereas one medium-risk vulnerability and four low-risk vulnerabilities were discovered in the Android audit (.PDF), the worst of which was an insecure logout issue.

    Finally, the iOS report (.PDF) documents two medium-risk vulnerabilities and two low-risk vulnerabilities, the most serious security flaw being the use of hardcoded credentials and sensitive data contained in memory.

    All of the vulnerabilities were either accepted or fixed at the time of disclosure.

More coverage and original statement

  • Source Code Released for All ProtonVPN Apps

    Proton, which a few months ago released the source code for its ProtonMail app for iOS, believes open source software is better in terms of safety and accountability, and the company plans on releasing all of its client-facing software as open source in the future.

  • All ProtonVPN apps are now open source and audited

    We’re happy to be the first VPN provider to open source apps on all platforms (Windows, macOS, Android, and iOS) and undergo an independent security audit. Transparency, ethics, and security are at the core of the Internet we want to build and the reason why we built ProtonVPN in the first place.

    [...]

    The other important benefit of open sourcing our software is that it furthers our overall mission to build an Internet that’s more secure, private, and free by leveraging the power of the community. Security improvements can now be submitted by developers from around the world through our bug bounty program. And in some cases even features improvements from the community may be incorporated into the official ProtonVPN apps, similar to what we have done previously with the official ProtonVPN Linux client.

Latest Articles About ProtonVPN Liberation

  • ProtonVPN becomes first VPN to go fully open source

    ProtonVPN is the Swiss-based VPN run by the people behind the highly regarded ProtonMail encrypted email service.

    It has been a welcome addition to the VPN marketplace since launching in 2017 and despite its relative youth, it has hit the ground running in a way not too many other start-up VPNs have managed.

    Now, the guys behind ProtonVPN have taken two big steps which are likely to cement their reputation as one of the most dependable providers on the market. They have gone fully open source and submitted to a full independent security review.

  • ProtonVPN Makes its Software Open Source & Publishes Independent Audit Results

    ProtonVPN has always been one of the most respected and trustworthy VPN services. As noted in our hands-on review, you can count on having your privacy protected in the most secure way possible. In addition, this is a no-logs VPN service, which means that connection and usage logs are never collected. However, to further cement its position, this VPN service has now decided to open-source its software. We also have the results of the VPN’s latest independent audit, showing that ProtonVPN is a highly secure solution.

    When it comes to making its software open source, ProtonVPN counts on making its code as transparent as possible. This is a bold move as it can show potential weaknesses, considering that just about anyone can inspect the way this VPN functions. In other words, this move is showing us ProtonVPN’s confidence in its software, which is going to have positive long-term effects.

  • ProtonVPN Apps Open Sourced for Added Transparency and Security

    The code for ProtonVPN apps on all supported platforms - Android, iOS, macOS, and Windows - is now open source, the maker announces today, a move that follows a security audit from an independent party.

    The decision distances the service from all the other options on the market and is in line with the company's belief in ethics, transparency, and security as core values for a trusted VPN (virtual private network) provider.

  • Proton VPN Becomes The First Fully Open Source And Audited VPN

    In a blog post, ProtonVPN just announced that it is open-sourcing its source code and has released the security audit reports as well.

    With this step, ProtonVPN aims to become the most transparent and accountable VPN provider in the VPN market. The company has also conducted an independent security audit, which will become a crucial factor for users in trusting their VPN service.

    [...]

    ProtonVPN has operated as a free service as well as a premium one. It is currently used by millions around the world and serves as an important tool for Internet freedom in places like Iran, China, and Russia.
    While there are currently open-source VPN clients available, ProtonVPB is “the first to open source all their apps and publish a security audit of them all.”

    In a statement issued to Fossbytes, ProtonVPN said that its app differs quite significantly from other open-source VPN clients such as OpenVPN as they provide a complete VPN service and “include additional functionality such as kill switch, always-on VPN, IKEv2 protocol support, split tunneling, etc.”

ProtonVPN goes open-source: What this means for your privacy

  • ProtonVPN goes open-source: What this means for your privacy

    Virtual-private-network (VPN) provider ProtonVPN is open-sourcing all its client software, parent company Proton Technologies announced earlier this month.

    Code repositories for ProtonVPN's Windows, macOS, Android and iOS client apps, as well as one of its Linux command-line tools, are now available on GitHub for you to download (you can find links below) and tinker with.

    [...]

    Instead, what open-sourcing means is that software experts and independent developers can look at the software source code and examine it for security and privacy flaws. They can also suggest improvements, or make improvements themselves and release the updated versions for free.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's howtos

Programming: Golang, Perl, Python and the GCC Story

  • 9 Reasons You Should Use Golang Language

    Golang is the open-source programming language developed by Google in the year 2007. Several programming languages are present in the market with advantages and disadvantages. We cannot predict which language is better, it would take months to discuss. However, the most sensible thing that helps choose a better language is the one that suits a specific purpose more reliably than the others. Thus, Golang development will be most suitable for those who are willing to combine simplicity, concurrency, and safety of the code. Different programming languages are less memory efficient and are unable to communicate with the hardware. Therefore, Golang is one of the most preferred languages for developers that help build software. It is also the open-source and procedural language that is advantageous to deploy simple, effective, and reliable software. Go language aids the environment to adopt different patterns that are similar to dynamic languages. Go language has several advantages that are responsible to quicken the development process. Moreover, Golang is the language that makes the process of software development easy and simple for programmers. These days, Golang is gaining popularity amongst the developers as it has a plethora of advantages than the other programming languages. So, the use of Golang has been adopted by mobile app development companies.

  • Demonstrating PERL with Tic-Tac-Toe, Part 1

    PERL is a procedural programming language. A program written in PERL consists of a series of commands that are executed sequentially. With few exceptions, most commands alter the state of the computer’s memory in some way. Line 00 in the Tic-Tac-Toe program isn’t technically part of the PERL program and it can be omitted. It is called a shebang (the letter e is pronounced soft as it is in the word shell). The purpose of the shebang line is to tell the operating system what interpreter the remaining text should be processed with if one isn’t specified on the command line. Line 02 isn’t strictly necessary for this program either. It makes available an advanced command named state. The state command creates a variable that can retain its value after it has gone out of scope. I’m using it here as a way to avoid declaring a global variable. It is considered good practice in computer programming to avoid using global variables where possible because they allow for action at a distance. If you didn’t follow all of that, don’t worry about it. It’s not important at this point.

  • Perl Weekly Challenge 048: Survivor and Palindrome Dates

    I tried two different approaches to the problem. The first one uses an array of living people and a variable $sword that stores the index of the person holding the sword. In each iteration of the loop, the next person is removed from the array, and the sword is passed to the next person. The “next person” has a special cyclic meaning: at the end of the array, the sword must return to the beginning. This is achieved by using the modulo operator %. Note that we use it twice, once to find the person to kill, and once to find the person to pass the sword to—and each case uses a different array size in the modulo operation, as killing a person changes the size of the array.

  • My Unexpected Dive into Open-Source Python

    I'm very happy to announce that I have joined Quansight as a front-end developer and designer! It was a happy coincidence how I joined- the intersection of my skills and the open source community's expanded vision. I met Ralf Gommers, the director of Quansight Labs, at the PyData Conference in New York City last year after giving a Lightning Talk. However, as cool and confident as this may sound, I sure didn't start off that way. At that point, it's been a few months since I graduated from a coding bootcamp. I was feeling down in the job-search funk. I hadn't even done much in Python, since my focus was in Javascript.

  • Reposurgeon defeats all monsters!

    On January 12th 2020, reposurgeon performed a successful conversion of its biggest repository ever – the entire history of the GNU Compiler Collection, 280K commits with a history stretching back through 1987. Not only were some parts CVS, the earliest portions predated CVS and had been stored in RCS. I waited this long to talk about it to give the dust time to settle on the conversion. But it’s been 5 weeks now and I’ve heard nary a peep from the GCC developers about any problems, so I think we can score this as reposurgeon’s biggest victory yet. The Go port really proved itself. Those 280K commits can be handled on the 128GB Great Beast with a load time of about two hours. I have to tell the Go garbage collector to be really aggressive – set GOGC=30 – but that’s exactly what GOGC is for.

Kdenlive: From Beginner to Advanced Video Editing

This is a different kind of video because it has a bit of Time Travel in it. In June 2019, I presented a talk at the SouthEast LinuxFest entitled “Kdenlive: From Beginner to Advanced Video Editing”. This was an interesting experience and the editing process took an excessive amount of time which I suppose is fitting for a video about video editing. In this video, you will learn some tips and tricks that I use for working in Kdenlive as well as some cool transitions like Matte Transitions. There was also a very useful Questions & Answers section at the end of the talk. I actually learned some more things during the process of editing this video so there is always plenty to learn about this kind of software. If you would like more Kdenlive videos from me then please leave a comment below. I would be happy to make some specific tutorial videos, this is more of an overview and I think there’s plenty to show in tutorial form. Read more

Videos/Audiocasts/Shows: GNU/Linux and Python, Fresh Look at LMDE 4 Beta

  • Hopeful for HAMR | TechSNAP 423

    We explore the potential of heat-assisted magnetic recording and get excited about a possibly persistent L2ARC. Plus Jim's journeys with Clear Linux, and why Ubuntu 18.04.4 is a maintenance release worth talking about.

  • 2020-02-21 | Linux Headlines

    Red Hat OpenStack Platform reaches version 16, Google announces the mentors for this year’s Summer of Code, DigitalOcean secures new funding, the Raspberry Pi 4’s USB-C power problems get a fix, and the GTK Project unveils its new website.

  • Talk Python to Me: #252 What scientific computing can learn from CS

    Did you come into Python from a computational science side of things? Were you just looking for something better than Excel or Matlab and got pulled in by all the Python has to offer?  That's great! But following that path often means some of the more formal practices from software development weren't part of the journey.  On this episode, you'll meet Martin Héroux, who does data science in the context of academic research. He's here to share his best practices and lessons for data scientists of all sorts.

  • Matt Layman: Templates and Logic - Building SaaS #45

    In this episode, we added content to a template and talked about the N+1 query bug. I also worked tricky logic involving date handling. The first change was to update a course page to include a new icon for any course task that should be graded. After adding this, we hit an N+1 query bug, which is a performance bug that happens when code queries a database in a loop. We talked about why this happens and how to fix it. After finishing that issue, we switched gears and worked on a tricky logic bug. I need a daily view to fetch data and factor in the relative time shift between the selected day and today. We wrote an involved test to simulate the right conditions and then fixed the code to handle the date shift properly.

  • LMDE 4 Beta Debbie Run Through

    In this video, we are looking at LMDE (Linux Mint Debian Edition) 4 Debbie.