ProtonVPN did an API bump in this version: Version 2.7.56.1 (2021-06-18) which left everyone with an Android version older than AOS 6 in the dust. So I went to the archives and grabbed the version just before that one. Ran it for the first time, configuration wizard had no issues but as soon as I tried to reach out to the server it refused to stand up a tunnel saying my version was too old. Not only did they leave permacomputing folks behind for sustaining their still-quite-functional devices, but they proactively sabotaged us from the server side.

AFAIK they made no excuses for the API bump. The usual excuse is “for security reasons”… yeah… bullshit. Anyway, here’s the workaround:

The absolute latest openvpn app still supports AOS 5 (somewhat suggesting there is no compelling security reason to force AOS 5 users to throw away their devices). Or if you have AOS 4 you can take the openvpn version from 2 years ago. ProtonVPN distributes openvpn config profiles and the openVPN app can simply import those.

Also worth noting that F-Droid warns of anti-features on the ProtonVPN app but OpenVPN is free of anti-features. That said, I got an authentication error, but I doubt that’s related to this procedure.

update

ProtonVPN is possibly breaking EU law. If someone subscribed to service less than two years before the forced obsolescence, ProtonVPN is obligated to continue service as long as necessary to serve the consumer for 2 years.

  • Toes♀@ani.social
    link
    fedilink
    arrow-up
    1
    ·
    9 months ago

    I’ve not used this service but a quick search suggested to me that they support IPsec, that should be natively supported by most of the legacy android versions.

    But if I had to guess without investigation, they may have been forced to raise their SDK version?

    • activistPnk@slrpnk.netOP
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      9 months ago

      IPsec didn’t occur to me. Apparently they don’t show the ipsec configs when desktop users login (I only recall openvpn and wireguard & i’m not keen to check because just about every login results in a CAPTCHA for me).

      The older droids (2.3 for sure) had broken built-in ipsec but they probably got it straightened out eventually.

      they may have been forced to raise their SDK version?

      What do you mean forced? Forced by who? I would not make excuses for pushers of forced obsolescence. It’s on them to explain and make excuses – which is almost always a quite vague “for security reasons”, like every bank that chases the shiny and forces consumers to buy a new phone every 3 years.

      Note Protonmail demonstrates this same forced obsolescence pattern with their Mail app, which requires AOS 6.

      • owenfromcanada@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        9 months ago

        What do you mean forced?

        By the general ecosystem. If we’re honest, Android is mostly developed by Google, and they’re gradually dropping support for the oldest versions.

        In short: the more versions you support, the more complicated (and error prone, and subject to potential vulnerabilities) it is. At some point, it’s reasonable for any developer to drop support for versions more than 10 years old to avoid a bloated and error-prone code base.

      • Toes♀@ani.social
        link
        fedilink
        arrow-up
        0
        ·
        9 months ago

        The latest Android version obsoleted many apps and the solution was to raise the SDK level. So if that’s what happened I can see how this happened.

        • activistPnk@slrpnk.netOP
          link
          fedilink
          arrow-up
          0
          ·
          9 months ago

          What you seem to be implying is that the OS removed an interface that the app is using. That’s unlikely because ProtonVPN needs generally the same facilities and mechanisms as openVPN, which was not forced to bump their SDK. You can also see that the ProtonMail app (which is inherently very different than VPN service) also bumped their version to abandon AOS 5 users a year later. Yet other email clients (which generally need the same interfaces) were not forced to abandon people.

          • Toes♀@ani.social
            link
            fedilink
            arrow-up
            0
            ·
            9 months ago

            more precisely, the theory I’m trying to express is that Android 15 & 14 has banned loading apps that target much older versions. A decision made by Google, forcing the developer to comply or see their app not work. So in my opinion your grievance should be targeted towards Google. Personally, I’m pissed that most of my humble bundle android apps collection doesn’t work any more because this.

            • activistPnk@slrpnk.netOP
              link
              fedilink
              arrow-up
              1
              ·
              edit-2
              9 months ago

              This does not explain the fact that ProtonVPN’s server proactively refuses to serve users of their client version 2.6.91.0 (which is the last to target AOS 5). Google has nothing to do with that.

              But also, if your theory is correct then openVPN fails to install on Android 15 & 14, correct?