Home Mail MemberMap Chat (0) Wallpapers
Go Back   ChiefsPlanet > The Ed & Dave Lounge > Media Center

Reply
 
Thread Tools Display Modes
Old 05-28-2014, 07:44 PM  
planetdoc planetdoc is offline
Veteran
 
Join Date: Apr 2012
Casino cash: $5000
Truecrypt may be compromised

those who visit truecrypt's sourceforge page will get this warning
Quote:
WARNING: Using TrueCrypt is Not Secure As it may contain unfixed security issues
A FOSS project shutters itself and, rather than linking to a fork or posting tarballs of a few versions' worth of source, recommends commercial alternatives. Suspicious

They Recommend to migrate to Bitlocker....an encryption platform by Microsoft that the feds asked for a backdoor. Suspicous.

Some users believe the program was compromised due to a national security letter, or it may be a break-in. Many things don't add up, including the fact that Truecrypt re-issued all of its keys only 4 hours before releasing the new version, 7.2. On top of this - they say they have stopped development because WinXP support has ended... which doesn't add up at all. Even those who audited truecrypt found out suddenly today about the changes and shutdown of the trucrypt project.

At this point it is not recommended to use the new version 7.2

Last edited by planetdoc; 05-28-2014 at 10:08 PM..
Posts: 1,989
planetdoc has disabled reputation
  Reply With Quote
Old 05-30-2014, 01:18 PM   #31
DaveNull DaveNull is offline
Veteran
 
DaveNull's Avatar
 

Join Date: Nov 2011
Location: Villa Straylight
Casino cash: $5180
**** Steve Gibson right in the ear. That guy is a fraud and a charlatan. The fact that he says it's safe is evidence to the contrary.
Posts: 1,196
DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.
  Reply With Quote
Old 05-30-2014, 01:30 PM   #32
planetdoc planetdoc is offline
Veteran
 

Join Date: Apr 2012
Casino cash: $5000
Quote:
Originally Posted by DaveNull View Post
**** Steve Gibson right in the ear. That guy is a fraud and a charlatan. The fact that he says it's safe is evidence to the contrary.
citation please.

https://en.wikipedia.org/wiki/Steve_...#Controversies

I dont know enough about his background, so please enlighten me.
Posts: 1,989
planetdoc has disabled reputation
  Reply With Quote
Old 05-30-2014, 01:32 PM   #33
htismaqe htismaqe is online now
What? What?
 
htismaqe's Avatar
 

Join Date: Aug 2000
Location: Chiefsplanet
Casino cash: $6490
I don't know if he's a fraud but he does promote some things that are kind of "pseudo science".

He's one of those guys that is very polarizing.
Posts: 61,487
htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.htismaqe is obviously part of the inner Circle.
  Reply With Quote
Old 05-30-2014, 01:41 PM   #34
DaveNull DaveNull is offline
Veteran
 
DaveNull's Avatar
 

Join Date: Nov 2011
Location: Villa Straylight
Casino cash: $5180
The Steve Gibson page at Attrition should get you started.
Posts: 1,196
DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.
  Reply With Quote
Old 05-30-2014, 01:52 PM   #35
nstygma nstygma is offline
Veteran
 
nstygma's Avatar
 

Join Date: Nov 2008
Location:
Casino cash: $5190
i like diskcryptor
__________________
you've heard that voice so long you believe it to be you
Posts: 2,194
nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.nstygma Forgot to Remove His Claytex and Got Toxic Shock Syndrome.
  Reply With Quote
Old 05-30-2014, 02:02 PM   #36
planetdoc planetdoc is offline
Veteran
 

Join Date: Apr 2012
Casino cash: $5000
Quote:
Originally Posted by DaveNull View Post
The Steve Gibson page at Attrition should get you started.
I just finished reading that.

The WMF "backdoor" was a real security vulnerability, and his concerns about raw sockets were not mere speculation. Windows addressed both of these issues. ShieldsUp!was just a simple web based port scanner...it isn't intended to be the holly grail of self penetration testing. Spinrite is not be the best, but it works.

to call this evidence that he is a "charlatan" is very weak, IMO.
Posts: 1,989
planetdoc has disabled reputation
  Reply With Quote
Old 05-30-2014, 02:22 PM   #37
planetdoc planetdoc is offline
Veteran
 

Join Date: Apr 2012
Casino cash: $5000
Quote:
Originally Posted by nstygma View Post
i like diskcryptor
http://www.hacker10.com/encryption-s...pt-comparison/
Posts: 1,989
planetdoc has disabled reputation
  Reply With Quote
Old 05-30-2014, 02:59 PM   #38
DaveNull DaveNull is offline
Veteran
 
DaveNull's Avatar
 

Join Date: Nov 2011
Location: Villa Straylight
Casino cash: $5180
Quote:
Originally Posted by planetdoc View Post
I just finished reading that.

The WMF "backdoor" was a real security vulnerability, and his concerns about raw sockets were not mere speculation. Windows addressed both of these issues. ShieldsUp!was just a simple web based port scanner...it isn't intended to be the holly grail of self penetration testing. Spinrite is not be the best, but it works.

to call this evidence that he is a "charlatan" is very weak, IMO.
Whatever. I'd just recommend getting security information from sources that have some credibility. His name is used as a punchline in the security community.
Posts: 1,196
DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.DaveNull would the whole thing.
  Reply With Quote
Old 05-30-2014, 09:28 PM   #39
planetdoc planetdoc is offline
Veteran
 

Join Date: Apr 2012
Casino cash: $5000
TrueCrypt security audit presses on, despite developers jumping ship
(highlights)
Quote:
Phase II of the TrueCrypt audit...involves a thorough cryptanalysis, including an audit of the TrueCrypt cipher suites, random number generators, and the way volumes are encrypted. In short, it will analyze the entire way encryption is implemented in the program.

White said the technical lead of Phase II is Thomas Ptacek, a widely respected security expert at Matasano who specializes in cryptographic protections. He'll be working closely with a variety of other highly regarded researchers, including Nate Lawson, a cryptographer at Root Labs. The work is expected to begin in June and wrap up by the end of September, White said.
Posts: 1,989
planetdoc has disabled reputation
  Reply With Quote
Old 05-31-2014, 05:43 PM   #40
unlurking unlurking is offline
Venator
 
unlurking's Avatar
 

Join Date: Aug 2003
Casino cash: $5190
Quote:
Originally Posted by planetdoc View Post
I just finished reading that.

The WMF "backdoor" was a real security vulnerability, and his concerns about raw sockets were not mere speculation. Windows addressed both of these issues. ShieldsUp!was just a simple web based port scanner...it isn't intended to be the holly grail of self penetration testing. Spinrite is not be the best, but it works.

to call this evidence that he is a "charlatan" is very weak, IMO.
JFC.

I haven't had to argue raw sockets in a decade. I didn't realize there were any Gibson followers left.
__________________

Posts: 7,976
unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.unlurking has just been standing around suckin' on a big ol' chili dog.
  Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On

Forum Jump




All times are GMT -6. The time now is 10:19 AM.


Powered by vBulletin® Version 3.8.0
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.