Pirate Party of Canada Promises VPN For Freedom
An anonymous reader writes "The Pirate Party of Canada has announced that it will extend a VPN originally set up to allow people in Tunisia to browse freely while internet censorship was imposed there. Canada may soon be added to that list since the ruling Conservative Party has vowed to introduce a bill that would provide unprecedented systematic interception and monitoring of Canadians' personal communications. So the Pirate Party of Canada has announced it will extend that service to Canadians."
That's not true, if the VPN _doesn't_ use a cert from one of the major SSL cert providers (which may already be compromised by governments) and you check the cert. It's trivial to use openssl (possibly with a wrapper like TinyCA) to issue your own certs, so if the VPN provider is doing that, it's much harder in some ways for a government to MITM (in fact, if they do manage it, it means either (1) they've compromised the VPN provider itself or (2) RSA is broken)
This is why gpg security is "better" in some ways than SSL CAs - no central CA authority to compromise. It's weird that we haven't seen a gpg encryption option for TLS yet though, there's no technical difficulty I can see.