Long title, wopsi.
Recently been checking out PIA VPN service(for research purposes), and they advertise their services to be 100% open source. However when checking their Github they don’t seem to have their code base for website there.
So this have had me wondering, when you hear the term 100% open source. Do you expect ALL of what they do, including website part, to be open source? Or just the application / service that they offer?
Lemmyknow your thoughts!
Personally, I consider PIA to be very low on the trustability scale, thanks to where they operate from and who owns them. That’s the most important part: not the stuff you can see, but the stuff you can’t. Especially when, from a privacy perspective, the VPN servers get the same data that your ISP would usually get, ie what domains you travel to, and when, and how often, and where you are.
At that point, it doesn’t really matter to me whether there’s a repository somewhere for the website. Compared to pretty much anything else, it’s very easy to audit them for sketchy behavior (except, of course, for the server-side stuff, which could easily be excluded from their source code even if they published it).