Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Open Source Crypto TrueCrypt Disappears With Suspicious Cloud Of Mystery
Forbes ^ | 5/29/2014 | James Lyne

Posted on 05/29/2014 8:05:00 PM PDT by TChad

Over the past 24 hours the website for TrueCrypt (a very widely used encryption solution) was updated with a rather unusually styled message stating that TrueCrypt is “considered harmful” and should not be used.

(Excerpt) Read more at forbes.com ...


TOPICS: Miscellaneous; News/Current Events
KEYWORDS: bitlocker; computers; cryptography; edwardsnowden; encryption; nsa; truecrypt
Perhaps the developers learned that they were not quite as anonymous as they had hoped. It will be interesting to see what the ongoing TrueCrypt audit finds.
1 posted on 05/29/2014 8:05:01 PM PDT by TChad
[ Post Reply | Private Reply | View Replies]

To: TChad

Nothing is anonymous these days.


2 posted on 05/29/2014 8:09:39 PM PDT by bgill
[ Post Reply | Private Reply | To 1 | View Replies]

To: TChad

Dang, you beat my post by a minute! Good work!


3 posted on 05/29/2014 8:16:29 PM PDT by aMorePerfectUnion ( "I didn't leave the Central Oligarchy Party. It left me." - Ronaldus Magnimus, 2014)
[ Post Reply | Private Reply | To 1 | View Replies]

To: AdmSmith; AnonymousConservative; Berosus; bigheadfred; Bockscar; cardinal4; ColdOne; ...

Thanks TChad.


4 posted on 05/29/2014 8:21:41 PM PDT by SunkenCiv (https://secure.freerepublic.com/donate/)
[ Post Reply | Private Reply | View Replies]

To: TChad

Our office used TC for a long time, even before the lavabit fiasco. No hard drives were ever used without it.


5 posted on 05/29/2014 8:22:04 PM PDT by max americana (fired liberals in our company last election, and I laughed while they cried (true story))
[ Post Reply | Private Reply | To 1 | View Replies]

To: TChad

This is a disturbing bit of news!

A true WTF!? moment.


6 posted on 05/29/2014 8:23:28 PM PDT by Bobalu (What cannot be programmed cannot be physics)
[ Post Reply | Private Reply | To 1 | View Replies]

To: aMorePerfectUnion
Dang, you beat my post by a minute! Good work!

It's always good to have a backup.

7 posted on 05/29/2014 8:27:36 PM PDT by TChad (The Obamacare motto: Dulce et decorum est pro patria mori.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: TChad

See this page...
https://www.grc.com/misc/truecrypt/truecrypt.htm


8 posted on 05/29/2014 8:34:20 PM PDT by Bobalu (What cannot be programmed cannot be physics)
[ Post Reply | Private Reply | To 1 | View Replies]

To: max americana
Our office used TC for a long time, even before the lavabit fiasco.

It's a great program. I will continue to use it for personal stuff, at least for a few weeks. Advising users to shift to Bitlocker screams "More is going on here than we are telling you!"

9 posted on 05/29/2014 8:36:42 PM PDT by TChad (The Obamacare motto: Dulce et decorum est pro patria mori.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Bobalu
See this page...

Thanks. Steve Gibson is great.

Finish the audit and bring on the fork!

10 posted on 05/29/2014 8:39:25 PM PDT by TChad (The Obamacare motto: Dulce et decorum est pro patria mori.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: TChad

Probably breached by the sickos at NSA


11 posted on 05/29/2014 8:40:10 PM PDT by yldstrk ( My heroes have always been cowboys)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bobalu

how cryptic


12 posted on 05/29/2014 8:42:22 PM PDT by yldstrk ( My heroes have always been cowboys)
[ Post Reply | Private Reply | To 8 | View Replies]

To: yldstrk
Probably breached by the sickos at NSA

I wonder what Snowden has to say about this.

13 posted on 05/29/2014 8:45:01 PM PDT by TChad (The Obamacare motto: Dulce et decorum est pro patria mori.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: TChad

This mess screams NDA.

A Lavabit moment here I think.


14 posted on 05/29/2014 8:45:41 PM PDT by Bobalu (What cannot be programmed cannot be physics)
[ Post Reply | Private Reply | To 10 | View Replies]

To: TChad

Privacy is harmful, and should not be sought.


15 posted on 05/29/2014 8:48:23 PM PDT by editor-surveyor (Freepers: Not as smart as I'd hoped they'd be)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TChad

It’s rather amazing, and slightly depressing, that stories like this invariably pull people out of the woodwork who have no idea what the story means, little concept of what they’re talking about, yet despite that ignorance said people tend to have VERY definite opinions.


16 posted on 05/29/2014 8:49:04 PM PDT by jameslalor
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bobalu

“This mess screams NDA.”

No, it doesn’t.


17 posted on 05/29/2014 8:51:11 PM PDT by jameslalor
[ Post Reply | Private Reply | To 14 | View Replies]

To: TChad

“Advising users to shift to Bitlocker screams “More is going on here than we are telling you!”

Exactly. You mean the same Microsoft who sold a Skype user to the gubmint’? No thanks.


18 posted on 05/29/2014 9:09:43 PM PDT by max americana (fired liberals in our company last election, and I laughed while they cried (true story))
[ Post Reply | Private Reply | To 9 | View Replies]

To: Bobalu

Thanks for the link. It will be interesting to see the level of interest in actually picking up the fork.


19 posted on 05/29/2014 10:18:15 PM PDT by zeugma (I have never seen anyone cross the street to avoid a black man in a suit.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: zeugma

I’d sure like to know just EXACTLY what is going on here...it’s just gotta be an interesting story.

I wonder what Snowden’s thoughts are on this.


20 posted on 05/29/2014 10:21:27 PM PDT by Bobalu (What cannot be programmed cannot be physics)
[ Post Reply | Private Reply | To 19 | View Replies]

To: jameslalor
It’s rather amazing, and slightly depressing, that stories like this invariably pull people out of the woodwork who have no idea what the story means, little concept of what they’re talking about, yet despite that ignorance said people tend to have VERY definite opinions.

I dunno about that. I have no clue what this article is about, and my opinion on the matter is equally nebulous. ;)

21 posted on 05/30/2014 3:02:12 AM PDT by exDemMom (Current visual of the hole the US continues to dig itself into: http://www.usdebtclock.org/)
[ Post Reply | Private Reply | To 16 | View Replies]

To: TChad

great - I rely on TC for personal use and found it a great program. I have no idea what the problem is, but going to bitlocker is a joke. I consider bitlocker compromised, in my humble opinion. TC may be also, time will tell, or maybe the government simply forced it off the market because it was good - I don’t know which it is. I do want a secure encryption process for my important files and not something that is compromised, as that offers no security.


22 posted on 05/30/2014 4:57:57 AM PDT by rigelkentaurus
[ Post Reply | Private Reply | To 1 | View Replies]

To: jameslalor

I wonder why all the interest in whole-disk encryption.

Is it that people really don’t understand the difference between security when your physical machine has been stolen or taken from you physically, and the idea of securing your OS from hackers that break in while your OS is running ?

I’m amazed that people would encrypt the hard drive on their personal PCs, as opposed to just keeping them physically secure.

What do you think the deal is ?


23 posted on 05/30/2014 7:39:18 AM PDT by PieterCasparzen (We have to fix things ourselves)
[ Post Reply | Private Reply | To 16 | View Replies]

To: rigelkentaurus

I’m just curious, why you do whole-drive encryption ?

If you have a few files that you want encrypted, you can encrypt just those files.

Actually, then when your OS is running, the file would be encrypted, so it would be more secure from hackers.

Encrypting the whole drive and then having the OS encrypt/decrypt every disk access on the fly means while your OS is running, nothing is encrypted to your OS (or you when you log in to your OS).

So if someone hacks in while your OS is running, nothing is encrypted to the hacker.

Just curious what your take is on this.


24 posted on 05/30/2014 7:42:55 AM PDT by PieterCasparzen (We have to fix things ourselves)
[ Post Reply | Private Reply | To 22 | View Replies]

To: PieterCasparzen

Hi - I don’t encrypt my whole drive. I use TC containers, which are directories and subdirectories. I have multiple containers for different uses. Containers are easy to move and sync between my machines. When I encrypt for use, it unlocks whole sets of files of a related nature. Going file by file would be tedious.


25 posted on 05/30/2014 12:42:30 PM PDT by rigelkentaurus
[ Post Reply | Private Reply | To 24 | View Replies]

To: rigelkentaurus

So if one of those files was a human-readable text file, and your OS is running and you’re logged in, can you just open the file in an editor and look at it ? That is, is it automatically (transparently to you) decrypted on the fly as the editor calls the OS to read the file ?

Or would it appear as an encrypted file in your editor, so before you edit it you have to enter a password, run a command, etc., in order to get it decrypted ?


26 posted on 05/30/2014 2:28:04 PM PDT by PieterCasparzen (We have to fix things ourselves)
[ Post Reply | Private Reply | To 25 | View Replies]

To: All


Help FR Continue the Conservative Fight!
Your Monthly and Quarterly Donations
Help Keep FR In the Battle!

Sponsoring FReepers are contributing
$10 Each time a New Monthly Donor signs up!
Get more bang for your FR buck!
Click Here To Sign Up Now!


27 posted on 05/30/2014 2:32:31 PM PDT by musicman (Until I see the REAL Long Form Vault BC, he's just "PRES__ENT" Obama = Without "ID")
[ Post Reply | Private Reply | To 26 | View Replies]

To: jameslalor
"This mess screams NDA."
No, it doesn't.

Maybe not "screams", but definitely hints. None of the other explanations really make any sense.

If the developers had just (understandably) decided that they wanted to move on after maintaining this project for a decade, there'd be no need for such dramatics -- just post a message saying "v7.1a is that last one we're doing, so any newly discovered bugs and vulnerabilities won't get fixed. Use at your own risk, and in the long term plan to switch to something else".

If the ongoing software audit had discovered some critical vulnerability that convinced the developers to abandon the project rather than try to fix it, there's no reason to not simply say so outright. Of course, an NDA (by definition) would give them a reason not to explain what's going on.

The advice to switch to BitLocker (closed-source software with no way to "check under the hood" from a company that has every incentive to cooperate with three-letter-agency demands) is so absurd as to be almost a troll. It's as if you read a message here that purported to be from the site management saying that Free Republic was being taken down and advising people to read Daily Kos instead -- you'd know that something funny was going on behind the scenes.

28 posted on 06/03/2014 8:32:23 AM PDT by Iced Tea Party
[ Post Reply | Private Reply | To 17 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson