[Cryptography] Fork of TrueCrypt
Jerry Leichter
leichter at lrw.com
Wed Jun 4 17:53:21 EDT 2014
On Jun 3, 2014, at 7:05 AM, Bill Cox <waywardgeek at gmail.com> wrote:
> An auto-update feature pinging the server would alert any network snooper of exactly who was using the TrueCrypt fork. From a security point of view, auto-update is DOA.
On the other hand, regularly checking a public location on which the latest versions of a wide variety of products are listed reveals pretty much nothing.;
If you act on what you find and go looking for the new version, of course, you reveal your interest. But that's true *no matter how you check for or download new versions*: The metadata about where you connect reveals your interests. Shock, horror. Tor.
-- Jerry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4813 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140604/6249a707/attachment.bin>
More information about the cryptography
mailing list