[Cryptography] Truecrypt removed by authors
Bill Cox
waywardgeek at gmail.com
Thu May 29 06:26:50 EDT 2014
I already suspected TrueCrypt was being pressured to weaken their security.
Bcrypt was presented in 1999, and is still not offered in TrueCrypt, nor
is Scrypt an option. Only very weak password hashing options are offered
(max is 2000 rounds of SHA256), and the default is the weakest of them all.
The even dumber defense from geeks on their forum of their weak password
hashing is one of those things that make me suspect NSA shills. However,
it's hard to distinguish intentional manipulation away from decent security
from good old fashion stupidity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140529/07732da2/attachment.html>
More information about the cryptography
mailing list