From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from plane.gmane.org (plane.gmane.org [80.91.229.3]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mail.server123.net (Postfix) with ESMTPS for ; Sun, 8 Feb 2015 12:53:43 +0100 (CET) Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1YKQQo-0006nN-0c for dm-crypt@saout.de; Sun, 08 Feb 2015 12:53:42 +0100 Received: from ip4d151e07.dynamic.kabel-deutschland.de ([77.21.30.7]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 08 Feb 2015 12:53:41 +0100 Received: from for-gmane by ip4d151e07.dynamic.kabel-deutschland.de with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 08 Feb 2015 12:53:41 +0100 From: "U.Mutlu" Date: Sun, 08 Feb 2015 12:53:34 +0100 Message-ID: References: <54D7347F.1080608@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit In-Reply-To: <54D7347F.1080608@gmail.com> Subject: Re: [dm-crypt] truecrypt - what's the real story behind it? List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: dm-crypt@saout.de Milan Broz wrote, On 02/08/2015 11:03 AM: > On 02/08/2015 10:45 AM, U.Mutlu wrote: >> Hi, >> the cryptsetup tool supports besides plain and luks, also loopaes and truecrypt. >> I now compiled truecrypt-7.1a, and it looks not bad. > > Please see the https://ciphershed.org project which tries to continue with development. > >> I wonder why some people say truecrypt is no more secure. >> Which part or method of truecrypt is allegedly broken? Can't be fixed? > > There is no publicly known serious problem there. But there are license and other > non-technical problems. You will get more info on devel list of project above. Then I wonder if the NSA/CIA/DHS etc. was involved in the decision of the authors to abondon truecrypt developement, or was there maybe a mole among the devs?... conspiracy mode off :-) The License.txt of truecrypt-7.1a says: "You may modify This Product (thus forming Your Product), derive new works from This Product or portions thereof (thus forming Your Product), include This Product or portions thereof in another product (thus forming Your Product, unless defined otherwise in Chapter I), and You may use (for non-commercial and/or commercial purposes), copy, and/or distribute Your Product." >> And: is full truecrypt functionality integrated in cryptsetup tool? I mean the >> create-options below. > > There is full support for mapping existing containers (with some exceptions, > see man page). > > There is intentionally no new container creation support in cryptsetup and > I am not planning to add it. > We will better invest time to improving LUKS. The advantage of truecrypt, as I see it, is that it is a multiplatform solution; works even under the Windows cr*p (btw. what's the status of "Microsoft Linux"? :-), they really shouldn't have dropped their Xenix; I had the pleasure to work on it for about 2 years at the end of the 1980ies... As time goes by... > You can use tcplay or older version of truecrypt for that (or ciphershed when > released). Thx, as said truecrypt-7.1a works fine here, but a maintained package is of course better, so I think I'll check the ciphershed release. And thx for the link to their project site; I didn't know of them. There I found also this link with some info about truecrypt's future: https://forum.truecrypt.ch/ > > Milan -- cu Uenal