|
Title: WARNING: TrueCrypt is no longer secure! Post by: drrussellshane on May 29, 2014, 03:46:14 PM Quote WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues This page exists only to help migrate existing data encrypted by TrueCrypt. The development of TrueCrypt was ended in 5/2014 after Microsoft terminated support of Windows XP. Windows 8/7/Vista and later offer integrated support for encrypted disks and virtual disk images. Such integrated support is also available on other platforms (click here for more information). You should migrate any data encrypted by TrueCrypt to encrypted disks or virtual disk images supported on your platform. http://truecrypt.sourceforge.net/ http://www.reddit.com/r/netsec/comments/26pz9b/truecrypt_development_has_ended_052814/ Title: Re: WARNING: TrueCrypt is no longer secure! Post by: DeathAndTaxes on May 29, 2014, 03:50:15 PM Strange that development just ended due to "support for XP ending". The explanation ignores the fact that people would want to use TrueCrypt on Linux, OSX, and later versions of Windows. I wonder if a three letter agency coerced the development team into integrating backdoors and rather than do that they just ended development?
Title: Re: WARNING: TrueCrypt is no longer secure! Post by: sumana on May 29, 2014, 03:50:29 PM any stats how many users are affected by this
Title: Re: WARNING: TrueCrypt is no longer secure! Post by: drrussellshane on May 29, 2014, 03:51:24 PM Strange that development just ended due to support for XP ending. The explanation is dubious as it ignores the fact that people would want to use TrueCrypt on Linux, OSX, and later versions of Windows. I wonder if a three letter agency coerced the development team into integrating backdoors and rather than do that they just ended development? This seems like an NSA letter to me.... not unlike what happened with Lavabit. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: yonce on May 29, 2014, 03:56:51 PM I did not hear about this. I guess it's time to re-encrypt the flash drives for cold storage.
Title: Re: WARNING: TrueCrypt is no longer secure! Post by: Joe_Bauers on May 29, 2014, 04:43:39 PM Maybe something came up in the latest audit?
Title: Re: WARNING: TrueCrypt is no longer secure! Post by: spazzdla on May 29, 2014, 05:00:29 PM Strange that development just ended due to "support for XP ending". The explanation ignores the fact that people would want to use TrueCrypt on Linux, OSX, and later versions of Windows. I wonder if a three letter agency coerced the development team into integrating backdoors and rather than do that they just ended development? This sounds very accurate. Allow us access to your customers encrypted files. NO If you don't jail for life, oh ya, TrueCrypt SHUTDOWN, suck my D NSA. We need mass public hangings of many public officals, such betrayal of the public should only be met one way. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: spazzdla on May 29, 2014, 05:01:08 PM any stats how many users are affected by this NSA probably has a death order on them, if they say they die.. I'm not joking. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: Its About Sharing on May 29, 2014, 05:33:42 PM So, an industry standard (so to speak) encryption program, is suddenly no longer secure and that is all?
Is there a canary here? Looks like it... Title: Re: WARNING: TrueCrypt is no longer secure! Post by: CincyFan on May 29, 2014, 05:37:28 PM So, an industry standard (so to speak) encryption program, is suddenly no longer secure and that is all? Is there a canary here? Looks like it... Has to be. It makes no sense otherwise. If not, it seems they were forced to shut down by certain US agencies. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: Its About Sharing on May 29, 2014, 05:51:34 PM So, an industry standard (so to speak) encryption program, is suddenly no longer secure and that is all? Is there a canary here? Looks like it... Has to be. It makes no sense otherwise. If not, it seems they were forced to shut down by certain US agencies. It looks like NSA is getting to the point where more and more people just flat out don't respect them and are willing to do whatever because their heart says so. Further, they appear to be in a bit of a self inflicted Chinese finger trap, and easing up just lets us a bit more free. Lose lose for them and for us win win. ;D Title: Re: WARNING: TrueCrypt is no longer secure! Post by: Fiyasko on May 29, 2014, 05:57:49 PM Seriously, how did truecrypt suddenly become unsecure? I don't want to hear
"Oh well, uhh, old exploits weren't fixed so that means it's vulnerable and were not gonna fix it because NSA told us to drop the program" What the hell is making truecrypt unsecure? I'm damn confident that it'd be harder for the NSA to open a truecrypt drive than a Bitlocker drive... Title: Re: WARNING: TrueCrypt is no longer secure! Post by: PrivacyIsImportant on May 29, 2014, 06:05:32 PM WARNING!!!
This topic title is full of bullshit... Don't believe to all who says that ! This is just another stupid story to convince you to use NSA tools (BitLocker,RSA tools and others) Here are original TrueCrypt 7.1a mirror: http://cyberside.net.ee/truecrypt/ Don't get tricked and never forget to verify the checksums! Title: Re: WARNING: TrueCrypt is no longer secure! Post by: CincyFan on May 29, 2014, 06:27:14 PM WARNING!!! This topic title is full of bullshit... Don't believe to all who says that ! This is just another stupid story to convince you to use NSA tools (BitLocker,RSA tools and others) Here are original TrueCrypt 7.1a mirrors: http://s7ick.org/tools/truecrypt/ http://cyberside.net.ee/truecrypt/ Don't get tricked and never forget to verify the checksums! While I tend to agree with your assessment, do you have evidence of your claim? Title: Re: WARNING: TrueCrypt is no longer secure! Post by: Fiyasko on May 29, 2014, 06:38:38 PM WARNING!!! This topic title is full of bullshit... Don't believe to all who says that ! This is just another stupid story to convince you to use NSA tools (BitLocker,RSA tools and others) Here are original TrueCrypt 7.1a mirrors: http://s7ick.org/tools/truecrypt/ http://cyberside.net.ee/truecrypt/ Don't get tricked and never forget to verify the checksums! While I tend to agree with your assessment, do you have evidence of your claim? Title: Re: WARNING: TrueCrypt is no longer secure! Post by: bitbouillion on May 29, 2014, 06:39:14 PM What is next? bitcoin-qt not secure, pls. cash out your BTC and use .... ?
Title: Re: WARNING: TrueCrypt is no longer secure! Post by: PrivacyIsImportant on May 29, 2014, 06:40:27 PM CincyFan,
1) There are completely no evidence of the previous claim as well ("TC isn't secure anymore") - Because there are no official statement from a TrueCrypt author regarding this issue, signed by him personally. - TrueCrypt authors would never recommend using commercial software, while there are a lot of good alternatives like BestCrypt or similar. - There was a statement on a TC site regarding that using any commercial software is not secure, and now they suddenly have changed their mind?? WTF!! 2) There were no success in auditing a TrueCrypt sources. On the TC Wikipedia (http://en.wikipedia.org/wiki/TrueCrypt) it was said that future release will contain a full windows 8 support: Quote Planned features Authors wouldn't just change their mind in that kiddy way and tell everyone to use BitLocker by Microsoft.According to the TrueCrypt website[81] the following features were planned for future releases: Full support for Windows 8 Ability to encrypt Windows system partitions/drives on UEFI-based computers Command line options for volume creation (already implemented in Linux and Mac OS X versions) "Raw" CD/DVD volumes Title: Re: WARNING: TrueCrypt is no longer secure! Post by: CincyFan on May 29, 2014, 07:21:54 PM WARNING!!! This topic title is full of bullshit... Don't believe to all who says that ! This is just another stupid story to convince you to use NSA tools (BitLocker,RSA tools and others) Here are original TrueCrypt 7.1a mirrors: http://s7ick.org/tools/truecrypt/ http://cyberside.net.ee/truecrypt/ Don't get tricked and never forget to verify the checksums! While I tend to agree with your assessment, do you have evidence of your claim? I have searched on reddit. It's all very interesting to read, but there is a TON to sift through. Maybe you can save us all a little time if you know specifically which versions are secure? Title: Re: WARNING: TrueCrypt is no longer secure! Post by: PrivacyIsImportant on May 29, 2014, 07:33:23 PM 7.1a is secure enough, it was been up for almost 3 years until this shutdown and there are 3 officially failed code audits during this period of time.
There are a lot of the US court cases where they still weren't able to go further due to lack of evidence because of the TrueCrypt encryption. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: CincyFan on May 29, 2014, 07:48:24 PM 7.1a is secure enough, it was been up for almost 3 years until this shutdown and there are 3 officially failed code audits during this period of time. There are a lot of the US court cases where they still weren't able to go further due to lack of evidence because of the TrueCrypt encryption. Thanks. I found this article via reddit: https://madiba.encs.concordia.ca/~x_decarn/truecrypt-binaries-analysis/ (https://madiba.encs.concordia.ca/~x_decarn/truecrypt-binaries-analysis/) which seems to say the same thing you are. It's a bit technical for my level though. Title: Re: WARNING: TrueCrypt is no longer secure! Post by: drrussellshane on May 30, 2014, 01:38:37 AM from reddit:
Quote They also removed the section in the license that required you to reference TrueCrypt if you branched or used it. Basically they are opening the door for a fork. The license change, the US comment change, the removal of hidden partitions, insecure errors that get thrown and telling users to use insecure software instead. They are screaming loudly to fork it due to an NSL. |