TrueCrypt forum gone? (TrueCrypt either stopped development or was hacked?)

Why would any person that invested so much time and efforts into a security software keep this information of insecurity secret but only claim it was unsecure?

That also explains, why the claimed "we have lost interest in TC and it is not secure" is BS²: losing interest is one thing, but not explaining to millions of users why it was not secure is a contradiction in itself for developers of open software: because only open software can be secure and any closed software can never be seen as secure for the user.

 

I don't know where you have your information from, but MS IS collaborating with the NSA and was granting backdoor access.
And just a few days ago new Snowden files showed, that the NSA was watching "encrypted" MS's Skype conversations.
I'd recommend to read www.rt.com and www.zerohedge.com everyday to be informed what is happening outside the matrix.

Microsoft Helped The NSA Bypass Its Own Encryption Software, Spy On Its Clients
http://www.zerohedge.com/print/476295

Microsoft helped the NSA bypass encryption, new Snowden leak reveals
http://rt.com/usa/microsoft-nsa-snowden-leak-971/

Microsoft handed the NSA access to encrypted messages
http://www.theguardian.com/world/2013/jul/11/microsoft-nsa-collaboration-user-data

 

Yes not explaining is a contradiction and so is recommending a closed source alternative by MS of all people, and not just to recommend but to actually plaster instructions for it all over the TrueCrypt page is very out of keeping with the open source community. It is that which led me to look at it at more than just face value.

 

I don't think it would take much pressuring, if you look at their history, the blatent security flaws, remember how much pressure Steve gibson had to put on MS to close the netbios flaw in Windows before they finally had little choice but to do something about it ? The Admin account passwords in a hidden registry key called SAM....The crippled outbound packet filtering in the Vista firewall to name but a few ... and now the Snowdon revelations. From a security point of view we should consider MS as complicit in aiding and abetting information gathering and spyware for over a decade.

 

RockLobster said:

Perhaps, but that complicity if true should be colored by possible, unavoidable arm-twisting and threats from the three letter agencies. The only way to really counter that threat is to have a real, incorruptible OS alternative. While NIX has advantages here, the platform suffers from multiple personality disorder that significantly weakens its ability to provide that pressure.

If you want to then start thinking about Android or Chrome, you have other issues that keep those OSs from being properly secured. Remember that these OSs were/are developed by companies dependent on big data and advertising which has incentives to keep the platform from being properly secured in any meaningful way.

 

I was speaking specifically about bitlocker. The Snowden info shows NSA-MS collaborating to intercept data transmissions, nothing about bitlocker having a global backdoor. Sure, anything is possible. The NSA could have embedded secret agents within MS and inserted NSA code into bitlocker without MS collaboration. I'm just speculating that it is more plausible the NSA has already been able to get MS to add a backdoor for Truecrypt.

 

Android & Chrome ? - Right, because Google isn't a NSA-front !
(Imagine the NSA had a bot crawling the web, identifying itself as 'NSA-bot' ..
Nope, that wouldn't fly - But a 'Google-bot' indexing the entire web ? No problem !!)

re : TrueCrypt version 7.1 vs 7.1a ..
There is nothing unusual about it, lots of TrueCrypt-versions had an 'a'-version released .
In one instance, they even changed the code of a released version without adding the 'a' .
Why ?
No idea, because one of the things TC never got right was a change-list and they where less than informative about bugs found ..

 

Just decrypted a non-system partition with TrueCrypt 7.2, so at least that functionality works fine.

 

True, but it's also not that hard to spotlight the changes to the code.

That was one of the major things people were doing when 7.2 came out, trying to determine if there was anything malicious about it. Here's a comparison highlighting the change to the license:

https://github.com/warewolf/truecrypt/compare/master...7.2#diff-dc5cde275269b574b34b1204b9221cb2L1

 

What do you guys think of Gostcrypt: https://www.gostcrypt.org/gostcrypt.php ? It is a Truecrypt clone that uses a single algorithm. Guess which one?

 

I think a certain government agency had something to do with this and the message is, Even if you use encryption we can still get your data. I think there is a panic from the agencies as to how many people are catching on to encryption ever since edward snowden hence, they are trying to discredit encryption. The reality is, that, end to end encryption properly used is a huge threat to law enforcement. No doubt they had something to do with this. There have been wide spread reports as to how certain government agencies are doing everything in their power to dissuade the use of encryption, and corrupt packages using man in the middle attacks and other methods.