## TL;DR The **official Conduit** code is clean. New paid tier requires Google/Apple login — worth knowing if you care about anonymity. The **ir-patch** source code and patch are legitimate. Don't run the prebuilt binaries — they're unsigned, from an unknown author, and you're told to bypass OS security warnings. Build from source if you want to use it. **Easier alternative:** use OS firewall rules with Iranian IP ranges — same effect, no code changes, no untrusted binaries. Psiphon don't officially support region filtering and haven't said why. Iran-only filtering **will block Iranian users who are already behind a foreign VPN**, but that's rare in practice since Psiphon is itself the VPN most of them need. # And now for the long version - Here is a summary of a chat I had with Claude AI: ## Context [Psiphon Conduit](https://github.com/Psiphon-Inc/conduit) is an open-source volunteer relay tool by Psiphon Inc. Volunteers run it on their home machines so that people in censored countries can route encrypted traffic through them. Iran is Psiphon's largest user base — during a January 2026 blackout, over 40,000 Iranians were connected through Conduit volunteers simultaneously. A repository called `conduit-ir-patch` (GitHub: `adpunt/conduit-ir-patch`, author "Adelaide Punt") claims to add a 4-line change that makes a Conduit relay accept connections **only from Iranian users**, so volunteers who specifically want to help Iran aren't spending bandwidth on other countries. --- ## Official Conduit — findings The core relay code is clean. No backdoors or tampering found. One notable addition in this version: a **"Hosted Conduit" paid tier** that requires Google/Apple sign-in via [Clerk](https://clerk.com) and uses [RevenueCat](https://www.revenuecat.com) for subscription billing. This is a significant shift — users of Hosted mode are now identifiable to Psiphon through their OAuth account.