I stand corrected, apologize for misinformation, and thank you for sticking with this thread.

But if I may put my cynical hat on (I think this is fair for any VPN provider), mullvad states in HN[0]

> Port forwarding needed to be removed on moral grounds.

Fair enough, however such moral grounds only came to light when extreme and immediate pressure was applied to their business model. The same post does talk about abuse, but only in terms of how it created a negative experience for "some" users (no details). The blog post does go into those negative effects, good, and doesn't try to whitewash it in moral reasons, also good. I think I mistook the official blog with an official statement here on HN.

There was another HN post apparently by a mullvad engineer that didn't pull any punches. I can't find it anymore, but I remember that it was that post that somehow led me to kfred's post and then left a very bad taste in my mouth. Maybe someone else is a better researcher than me and can dig it up.

I'll retract my "character" criticism, since mullvad clearly cares deeply about privacy, regardless of my perceived problems with their public communications.

Personally, iCloud Private Relay ticks all the boxes for my use cases, so I should have just kept my mouth shut.

[0] https://news.ycombinator.com/item?id=37062965