Bitcoin Forum>Other>Off-topic
Pages:
Author

Topic: TrueCrypt development ended - now insecure? - page 2. (Read 1567 times)

BCwinning
hero member
Activity: 770
Merit: 500
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 11:47:25 PM
#8
Quote from: dooglus on June 01, 2014, 10:12:15 PM
Quote from: SirChiko on June 01, 2014, 04:12:10 AM
Maybe you should look here:
"The first phase of the TrueCrypt audit found no serious problems with the Windows build of TrueCrypt."

http://www.pcworld.com/article/2304851/so-long-truecrypt-5-encryption-alternatives-that-can-lock-down-your-data.html

There is a theory that the TrueCrypt developers were approached by a government body and forced to weaken the security of TrueCrypt, and also forced not to tell anyone about it.

And so this would be their way of them telling us about it without actually telling us.

The fact that they recommend we switch to a closed-source Microsoft solution is just laughable.  Their advice for Linux users is "search for some other package".

Something fishy is definitely going on.
This, it's called the canary. aka lavabit.
Truecoin
sr. member
Activity: 312
Merit: 250
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 11:39:59 PM
#7
You can still download it here: http://truecrypt.ch/

b!z
legendary
Activity: 1582
Merit: 1010
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 11:11:21 PM
#6
Quote from: dooglus on June 01, 2014, 10:12:15 PM
Quote from: SirChiko on June 01, 2014, 04:12:10 AM
Maybe you should look here:
"The first phase of the TrueCrypt audit found no serious problems with the Windows build of TrueCrypt."

http://www.pcworld.com/article/2304851/so-long-truecrypt-5-encryption-alternatives-that-can-lock-down-your-data.html

There is a theory that the TrueCrypt developers were approached by a government body and forced to weaken the security of TrueCrypt, and also forced not to tell anyone about it.

And so this would be their way of them telling us about it without actually telling us.

The fact that they recommend we switch to a closed-source Microsoft solution is just laughable.  Their advice for Linux users is "search for some other package".

Something fishy is definitely going on.

That is actually very possible in my opinon. Do you think they chose to shut down for the same reason LavaBit did?

This article lists a few possibilities: http://www.coinbuzz.com/2014/06/01/truecrypt/
dooglus
legendary
Activity: 2940
Merit: 1333
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 10:12:15 PM
#5
Quote from: SirChiko on June 01, 2014, 04:12:10 AM
Maybe you should look here:
"The first phase of the TrueCrypt audit found no serious problems with the Windows build of TrueCrypt."

http://www.pcworld.com/article/2304851/so-long-truecrypt-5-encryption-alternatives-that-can-lock-down-your-data.html

There is a theory that the TrueCrypt developers were approached by a government body and forced to weaken the security of TrueCrypt, and also forced not to tell anyone about it.

And so this would be their way of them telling us about it without actually telling us.

The fact that they recommend we switch to a closed-source Microsoft solution is just laughable.  Their advice for Linux users is "search for some other package".

Something fishy is definitely going on.
Newar
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 07:04:23 AM
#4

http://www.dyne.org/software/tomb/



For possibly more secure cloud storage look into wuala. They claim the files are encrypted on your computer before they are sent to their servers. Of course you still got to trust them that they uphold that promise...
www.wuala.com
SirChiko
legendary
Activity: 966
Merit: 1000
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 04:12:10 AM
#3
Maybe you should look here:
"The first phase of the TrueCrypt audit found no serious problems with the Windows build of TrueCrypt."

http://www.pcworld.com/article/2304851/so-long-truecrypt-5-encryption-alternatives-that-can-lock-down-your-data.html
Parazyd
hero member
Activity: 812
Merit: 587
Space Lord
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 03:37:35 AM
#2
What the actual fuck?
Thylacine
member
Activity: 115
Merit: 10
Re: TrueCrypt development ended - now insecure?
June 01, 2014, 03:21:30 AM
#1
Cliffs: The Sourceforge project page for Truecrypt updated with notice that Truecrypt should no longer be used as it is not secure. Latest binaries on site are read-only - no new encrypted volumes can be created (you may still read ones you have created in previous versions). Whole thing is a little mysterious and smells fishy.

Speculation in spades, no real answers;

http://www.reddit.com/r/netsec/comments/26pz9b/truecrypt_development_has_ended_052814/
http://boingboing.net/2014/05/29/mysterious-announcement-from-t.html

Does anyone have any updated information?

This news is certainly bad for me as my security solution was to store my wallets inside a TrueCrypt container - of which I also have multiple backup copies in the cloud. Although it may seem like asking for trouble to store anything in the cloud - I figure even if there is a bad actor on DropBox's end, it's going to be (effectively) computationally impossible for them to get into the container contents. After which, they would have to still then break through the native encryption on the wallet, so I was reasonably happy with the solution. But given this news, it might be time I create a new wallet and transfer my coins over.

Anyone have any thoughts or good TrueCrypt alternatives? Maybe I'll try Armoury etc..
Pages:
Bitcoin Forum>Other>Off-topic
Jump to: