Features that actual end users of VPNs often do not want, but which VPN administrators may expect due to security or control requirements.

Needs update from submitter

Many VPNs expect the end user to run some kind of "security" scanner which collects information on the client system and reports it to the server. Sometimes this is a completely untrustworthy Trojan binary, as in the case of Cisco's CSD.