Comment by regularfry
6 months ago
Do you happen to know what the answer of this scheme to "I have a wireguard connection to another country, you can't see my traffic" is? I know that enough of the population would never bother so it wouldn't significantly harm it as a revenue scheme, but if your goal is avoiding identification rather than taxation then the stakes could be high enough to make the effort worthwhile.
The political answer to circumventing laws is usually some form of punishment. This is often much easier than weird technical solutions.
Indeed. Governments have to worry about 99.9% of cases covered with a law or regulation have punishment in term of fine or imprisonment.
Those remaining very likely have multiple advantages like advance technical knowledge, connection to powerful people in business / governments, money and legal support in case they end up on wrong side of law. There is very little benefit and lot of effort to catch these unless they are running some kind of criminal organization which adversely affects their government/regime.
Is that what happens in this specific case?
> enough of the population would never bother
People have bothered with downloading low-quality Mp3s from Napster, figuring out video codex and modding game consoles to get free video games. If the need is dire enough, the users will figure it out, no matter how high the friction is.
Those with enough technical chops will figure out how to do it by themselves, those with enough intelligence will find resources on the internet, the rest will ask a friend or pay a local IT person to get it set up for them.
> People have bothered with downloading low-quality Mp3s from Napster, figuring out video codex and modding game consoles to get free video games
That's not "enough", it was extremely nice and probably less than 1% of population
> Do you happen to know what the answer of this scheme to "I have a wireguard connection to another country, you can't see my traffic" is?
WG traffic is easily identifiable and able to be blocked, it's what happens in countries that ban VPNs.
At that point something along the likes of shadowsocks would be more effective, and the question still remains.
Shadowsocks is detectable using entropy analysis but not everybody does it. I heard in China they do. you connect at first they collect data, analyze and ban. in Russia they are not that smart yet but in Russia even if you mask VPN traffic they use other tricks. For example if you visit any state adjacent site from your Russian IP and VPN with same cookies they can ban VPN exit node. Or if all your traffic goes to one IP they will probe ports or just ban that.
I think the answer is that it's likely illegal if someone can prove an intent to defraud or commit a theft of service, but the chances of getting caught may be small depending on your technical ability/OPSEC.
Yes, but is that what happens in this specific case? There are enough legitimate uses of VPNs that blocking them solely in case people wriggle out of social media taxes would be extremely heavy-handed.