Why Hamachi is evil

Some people may question: Why is Hamachi evil? It's easy to use! Well, just because "it works" and it's "easy to use" doesn't mean that it can't mask underlying problems underneth. To see what I mean, search about issues about 80s Jaguar cars and virtually every version of Windows. Now, I'm going to tell you why you need to throw in the towel with Hamachi.

Please note: I am using the terms server and service interchangably at times. Whether if it's a website or a Minecraft server, it's the same principle.

It breaks networking.

Okay, what's the big whoop here? Why of course, Hamachi breaks networking in the name of a "VPN". The issue lies in the design of the Hamachi network itself. Let's take a further look with a story from 2011:

  • Hamachi currently uses an /8 (CIDR notation for 16,777,216 addresses -- which is quite a bit!) network - 25.0.0.0/8, owned by the UK Ministry of Defence. Because this is an internal network, it is okay for Hamachi to use.
  • However, in the past it used 5.0.0.0/8. Sometime in 2010 or 2011, this /8 started being used for assignments to European providers via RIPE. Some notable providers in this block include Sky Broadband (a major internet provider in the United Kingdom), OVH (a major dedicated server host based in France), and Hetzner Online (a datacenter company in Germany).
  • Suddenly, Hamachi users could not connect to these providers with IP space in 5.0.0.0/8, because it was being used by Hamachi! This issue could've affected lots of users for these services as users with Hamachi would not be able to access services in this block.
  • Some time later, LogMeIn changed it to 25.0.0.0/8. There are no longer any conflicts.

While this story is over with, it doesn't change the basic essential facts with regards to network connectivity. One day, the UK Ministry of Defence will decide to let go of this block and it will be unallocated and this story will repeat again.

It's not professional.

If you think that having to install a piece of software only officially supported on Windows and Mac OS X is good, don't make the Linux users give up on your service. That client is in beta and you need third-party software in order to manage Hamachi with a GUI. Additionally, some people will simply give up and not make the effort to access your service.

Additionally, your advertising choices will be heavily limited. Some users, like I said earlier, will not bother with this.

It's actually a security risk.

How can this "VPN" be such a security risk, you may be wondering. However, Hamachi bypasses your router and exposes your computer and internal network directly to the networks the user joins. This can lead to a lot of fun when suddenly your connection begins to slow to an absolute crawl. Attackers can also join public networks automatically and perform DoS and/or brute-force attacks, and it will be obscured thanks to Hamachi. Additionally, Hamachi has very limited administration features and won't prevent DoS from a network's members.

Conclusion

Keep Hamachi friends-only. But you should seriously rid of it.