« It seems that the NSA has indeed succeeded in breaking or otherwise decrypting a great deal of VPN traffic. However OpenVPN, remains largely secure., as do strong encryption such as the AES (or even Blowfish). Combined with these, OpenVPN remains highly effective against any form of brute force attack, and as noted above, its use of ephemeral key exchanges means that dragnet surveillance of OpenVPN traffic should be impossible. OpenVPN is also free and open source, which means its code is subject to peer review. While the truly paranoid might note that if the NSA can strong-arm commercial software developers, then there is nothing to stop them infiltrating open source software development groups without anyone noticing it, the fact remains that use of free and open source software (FOSS) is the best possible defense available. »