Nym and NymVPN - Next-gen privacy with mixnet and VPN service

It is at the moment. We would like to bring DNS customization to the app. Any DNS service you’d like to see pre-listed in there?

It would be great to have the option to input any DoH address so custom resolvers from Control D, NextDNS, etc. could be used.

2 Likes

What would be also cool would be to offer (opt-in) to resolve .onion and .i2p addresses when connected to your VPN, so that you can visit these sites with any browser. I believe Cryptostorm is one VPN that does this.

(Best practice for anonymity/fingerprinting-resistance is Tor Browser, I know, don’t say it please)

Quad9 and Adguard

1 Like

Thanks for the feedback, we’ll look into this.

2 Likes

Will there be support for ipv6?

1 Like

NymVPN already offers support for ipv6 and basic ipv6 leaks protection (https://support.nym.com/hc/en-us/articles/24630824940305-What-to-do-if-NymVPN-is-leaking-DNS-WebRTC-and-IPv6-addresses)

3 Likes

Looks very promising. Once there’s split-tunneling support for Android I’ll definitely give the service a try. Is ad/malware blocking via DNS on the roadmap?

Few suggestions for your website:

  • On mobile the Grey top announcement banner has too much x-padding and makes the text wrap to unnecessary many lines, hard to read and looks unprofessional.
  • The main menu header should be sticky and always accessible when scrolling the site on both mobile and desktop.
  • Text size hierarchy could use some work: larger font size difference and bolding on titles and subheadings.
  • “More than VPN”, ,“Anonymous by design” sections are bit exhaustive to scroll through, there’s little of visual interest and the icons don’t really provide much help to understand the concept. Maybe just the title would be enough on the home so if would occupy much less space with smaller icons? On desktop this section is fine.
  • Comparison table is near unusable on mobile. You should have heading with checkbox list underneath or some way that doesn’t require horizontal scrolling with the features column not staying visible.
1 Like

Skimming Nym’s whitepaper does remind one of the engineering awe of the original Session whitepaper. In contrast, Nym’s basis in genuine academic research is reassuring, and I do hope that Nym does not overcommit in quite the same way. The community interaction here is also quite refreshing.

Feedback

Nym’s presentation struck me as quite empty. Nym’s website contains generic marketing keywords and some arguably self-confident statements. In my opinion, Nym’s marketing undermines its credibility. Personally, I would not have given Nym a second look were it not for this thread.

I recognize your efforts to keep the comparison table up-to-date. However, comparison tables can be just as easily used to deceive readers. I hope you can then understand why such presentation devices can be off-putting.

I believe that using less absolute language would go a long way (see IVPN, whose marketing shows good humility). You may also highlight mechanisms instead of features/attributes where appropriate to earn trust (for example, “LIKE 2 VPNS (OR 5)” instead of “MORE ANONYMOUS”). Some mechanisms or attributes simply cannot be described without technical jargon, and for some, it is not obvious to the reader that they are needed. It is okay to omit these from the main page.

There is also something to be said about academic credentials. It wouldn’t hurt to mention the project is “BACKED BY RESEARCH”.

Summary

Where Session developed attractive applications but spread itself thin, Nym may be a stable project, albeit one flying under the radar [subjectively speaking].

While I do not have a firm grasp on the architecture yet, I am happy that the mixnet concept is being taken to its ideal form. Solid overall, but more time will be needed for the privacy community to recognize the value of and become familliar with NymVPN.

3 Likes

Removing forward secrecy was awe inspiring?

Session is based on an incentivized, sybil-resistant mixnet [that performs many other duties]. However, Session bit off more than it could chew and wound up cutting corners, PFS included. Your point, while valid, is not relevant to the mixnet design, and has been beaten to death elsewhere (see e.g. the featured topic on my profile). Please refrain from kneejerk reactions; I did not come here to advocate for Session.

Would be helpful if you had clarified. Sybil resistance based in staking for increasing cost of attack was not something pioneered by Session anyway. Nym paper does strike me as innovative, at least as far as VPNs go. Thanks for your helpful summary above.

2 Likes

Thanks! Give it a try today while it’s in free beta tests :wink: Paid versions start on March 13.

Yes, we’re thinking about letting users configure the DNS, which would also solve for ad/malware blocking.

Thanks, make sense. We’re continuously improving the website, stay tuned.

Thanks for sharing the specific points you find problematic. We’re in the process of upgrading the page, so it’s both more friendly for “mainstream” users and has the right level of tone/info for more advanced ones.

1 Like

Reviving this topic to say: Nym have definitely cleaned up their marketing!

The main page now focuses on the important points, while still managing to sneak in “multi-layer encryption, noise generating mixnet and decentralized design” for users who understand how these features are a big step up. “Backed by research” has made an appearance, and the comparison table is also slightly more palatable now than before. Jargon has been meanwhile offloaded to the pricing page, as have the marketing bullet points, which are now trapped under the “Benefits” header.

I feel comfortable saying that Nym has taken this community’s advice to heart (or maybe just mine :wink: ). But I can’t blame Nym for claiming to be “the world’s most private VPN”. :smile:

P.S. The Pricing FAQ still has information about the free trial.

2 Likes

Still
strapi-www-nym-com-production.sos-ch-dk-2.exo.io - is blocked by Control D as Malware
snippet.maze.co - Hagezi’s DNS - Pro Plus

Brave Shields is also blocking https://matomo.nymtech.net/js/container_iT00PYD0.js

If I disable Brave Shields, I can see the picture file names on your page.

Maybe you should fix these issues first of the webpage design and talk to these guys?

Brave Browser correctly displays the webpage for me:

same here, maybe it has been addressed as of:

but there are no responses so.

1 Like

I don’t think that Brave Shields blocking your self-hosted Matomo analytics when set to aggressive is a mistake from Brave and instead expected behavior. So, I don’t see why Brave should do anything about it. An ad and tracker blocker is expected to block trackers and if it isn’t doing that, then it isn’t doing its job very well, even though your implementation isn’t very privacy invasive. Ublock Origin’s default easy mode also blocks this btw.

Then next step will be removing all the trackers and data collectors, like Proton and Mullvad from the website

Thanks for reporting. I’ve reached out to ControlD regarding strapi-www-nym-com-production.sos-ch-dk-2.exo.io. maze.co is a module used for user testing. Fine if blocked with aggressive privacy settings. It should have no impact on on-site experience.

That’d be ideal. Being new to the game, we want to understand a bit how the website is used. As already mentioned in the thread, it’s done via a self-hosted Matomo instance. Not sure about Mullvad, but Proton does seem to have on-site analytics too “2.1 Visiting proton.me or protonvpn.com website: We employ a local installation of self-developed analytics tools. Analytics are anonymized whenever possible and stored locally (and not on the cloud). IP addresses are not retained and stored for such analytics.” Seems it’s telemetry.proton.me.

ControlD acknowledged the issue and they said it’s fixed now. Keep us posted!