From: Arno Wagner <arno@wagner.name>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Question about backdoors and the NSL
Date: Fri, 30 May 2014 15:13:26 +0200 [thread overview]
Message-ID: <20140530131326.GA21263@tansi.org> (raw)
In-Reply-To: <53884fd4.c462b40a.0302.ffff9e31@mx.google.com>
Hi,
On Fri, May 30, 2014 at 11:07:12 CEST, web1bastler@googlemail.com wrote:
> Hello dear cryptsetup team,
>
> I want to ask if you received a national security letter because I want to
> know if my LUKS encrypted volumes are still safe.
First, you should know that your question is not very bright.
Recipients of valid NSLs are not allowed to talk about them or
admit they have gotten one. Hence what do you expect as answer if
there were an NSL?
But second, Milan and I are not located in the US, so I doubt
that they could legally give either of us an NSL and even if
they did, I doubt it would have any effect. But please notice
that I am not answering your question, to be sure you have to
verify what I just said yourself.
> I heard about what happened to True Crypt just recently and there has been
> some speculation whether the developer has gotten a nsl or something else.
>
> I knew for quite a time that American agencies such as the NSA ask
> developers to build in backdoors into their encryption programs or even HW
> encryption chips.
>
> I think it’s ridiculous that those agencies get so many rights that they
> can even stomp on the freedom of a person in a different country which is
> totally not democratic.
>
> So I want to know if my sensitive data is still safe on a LUKS encrypted
> volume.
It should be. But also note that it depends on more than cryptsetup.
cryptsetup is just a set-up front-end from dm-crypt and the kernel
encryption code. On the other hand, the only thing that could have
a relvant backdoor there is the crypto-RNG, and there is reson to
believe the kernel folks are taking that one pretty serious and
it likely is not compromised.
Arno
> I’m thanking you in advance and it would be nice if you could reply in
> about 1-2 weeks
>
>
> Yours sincerely,
>
> web1bastler
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@saout.de
> http://www.saout.de/mailman/listinfo/dm-crypt
--
Arno Wagner, Dr. sc. techn., Dipl. Inform., Email: arno@wagner.name
GnuPG: ID: CB5D9718 FP: 12D6 C03B 1B30 33BB 13CF B774 E35C 5FA1 CB5D 9718
----
A good decision is based on knowledge and not on numbers. - Plato
next prev parent reply other threads:[~2014-05-30 13:13 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-05-30 9:07 [dm-crypt] Question about backdoors and the NSL web1bastler
2014-05-30 13:13 ` Arno Wagner [this message]
2014-05-30 14:55 ` Milan Broz
2014-05-30 16:14 ` ken
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20140530131326.GA21263@tansi.org \
--to=arno@wagner.name \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox