Search the Community

A lot of you are probably familiar with Riseup.net already, but for those who aren't they're a volunteer tech group in the US who aim to provide secure services to activists. They provide email, I think 2 VPN servers, and other things. If you want an account you can apply and they may accept depending on what you put. They run on donations. I for one would be very pleased if subscribing to Air helped Riseup.

In the wake of the Heartbleed Bug, the OpenBSD Foundation has begun a fork of the OpenSSL source code. Enter LibreSSL. In one week they have removed 90,000 lines of C code and 150,000 lines of content that they say was old or unused. For those not familiar with OpenBSD, they are a non-profit and are security centric in the coding of their software. Part of their culture is to frequently perform group audits of their code. PF, or Packet Filter, was originally designed by them and is the underlying firewall engine of pfSense, which I trust to keep me secure. As Pointed out by another user, they also maintain the OpenSSH project, used by many. In short they for a long time have played a big part in keeping many of us secure. They are implementing the first release of LibreSSL into OpenBSD 5.6 and then working on porting it to other OS's I personally am excited about this. I think this has good potential for future releases of OpenVPN and ultimately our uses with VPN. This perhaps might be a good candidate for AirVPN's No-Profit Community initiative. While some may consider this sentiment premature, this seems like a probable evolution of the Open Source SSL Library most will end up using. It only makes sense as their team seems to keep up with routine audits. Further reading: http://www.libressl.org/ http://www.openbsdfoundation.org/ http://www.openbsdfoundation.org/donations.html http://arstechnica.com/information-technology/2014/04/openssl-code-beyond-repair-claims-creator-of-libressl-fork/

https://www.stunnel.org/ The stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server. It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the programs' code. Stunnel uses the OpenSSL library for cryptography, so it supports whatever cryptographic algorithms are compiled into the library. Stunnel can benefit from FIPS 140-2 validation of the OpenSSL FIPS Object Module, as long as the building process meets its Security Policy. A scanned FIPS 140-2 Validation Certificate document is available for download on the NIST web page. The Windows binary installer is compiled with FIPS 140-2 support. The FIPS mode of operation is no longer enabled by default since stunnel 5.00. 30/01/2014, Funded with 1000€ (1355 USD).

http://www.xabber.com/ XMPP (Jabber) Android client with multi-account support, with OTR support.