Thought on Veracrypt?
Is Truecrypt still secure and what did really happen to it?
How secure is KeePass?
Encrypting cloud data best practices?
Has the NSA cracked AES yet?
Tell me about your encryption practices Sup Forums
Encryption General
Elijah Hill
Other urls found in this thread:
en.wikipedia.org
gitlab.com
en.wikipedia.org
en.wikipedia.org
grc.com
en.wikipedia.org
twitter.com
Oliver Gomez
>Thought on Veracrypt?
It's good
>Is Truecrypt still secure and what did really happen to it?
Your data is secure once it's encrypted in truecrypt.
But the software itself is unsupported and has security flaws.
>How secure is KeePass?
Secure
>Encrypting cloud data best practices?
Encrypt it with anything (veracrypt, truecrypt, 7zip, peazip, whatever) before you upload it
>Has the NSA cracked AES yet?
No, the weakest link is still your password and/or lack of a keyfile.
William Torres
I'm only protecting my data from burglars and cyber-thieves so I use Windows bitlocker. If the police want my files I will happily give up my passwords, as I am required to do so by law in my country. I have nothing to hide from the police or the government.
Isaiah Bennett
>Veracrypt, Truecrypt
decent, but >windows
>KeePass
Fine as long as you pick a good master password. Remember Rule One of passwords, if its easy to remember its probably shit.
>cloud
if you use it then encrypt locally before the data ever hits the wire. If its handled for you, then the provider can decrypt it.
>is AES broken?
no.
>tell me about stuff
anything in particular?
Evan Price
Im trying to set up an on the fly decrypting samba share on my debian home server. Any ideas?
I dont mind reinstalling the whole system.
Luis Jenkins
your submissive, subservient attitude towards government and law enforcement disgusts me from first principles. Be a person instead of a slave.
Christian Edwards
TrueCrypt 7.1a is still 100% secure dunno about 7.2
Jayden Phillips
Do you have s source?
Jacob Nguyen
>But the software itself is unsupported and has security flaws.
What flaws, and in what scenario could these be exploited?
Adam White
7.2 is the one released at roughly the same time truecrypt shut down with a mysterious message.
Switch to veracrypt.
Kayden Smith
Yes I know, I mean do you have a source of TC 7.1a still being secure?
Dominic Nguyen
>Windows
Use LUKS.
Christian Cook
It's the one the big Truecrypt audit was done on.
Adam Brooks
honestly, you don't know if the NSA has cracked AES, unless you yourself are a spook or someone in the know.
Anthony Cruz
Lets for a second assume they did break it.
Would something like AES(Serpent(Twofish)) still be good? Or are the latter already broken?
Camden Thomas
It's highly unlikely, considering the math behind it. Even with a quantum computer the strength of symmetric encryption would only be halved.
Ayden Thomas
Thats great for you.
Eli Wood
Really? I always thought all bets are off once good quantum computers developed. Care to further explain?
Jack Clark
Quantum computers are a meme, friend.
Photonic is the future.
Luke Torres
Truecrpy and Veracrypt are both compromised.
Use LUKS/dm-crypt
ed25519 also for certs/keys
Aiden Gutierrez
How are they compromised?
Ethan Perez
Quantum computers only break asymetric encryption (aka whatsapp, email, bitcoin, https). All communications become insecure.
It doesn't do shit to your file encryption.
Jordan Rivera
Quantum computers don't make P=NP, it's just a three-faced bit.
Julian Bell
Even if they did and they just didn't want to announce it, then they wouldn't waste it on decrypting your weird pornography, wouldn't they? Even if that was some seriously weird pornography which could put you in prison for years.
Kayden Brown
iirc, there was something that could intimate if a file has hidden volumes.
This was patched in VeraCrypt a few versions back.
Connor Phillips
Quantum computers aren't a meme.
They allow more computation and more variables because of a 3rd option in processing.
A yes/no/maybe.
>the bets are off
This is why ECC was created.
To account for Quantum computation.
en.wikipedia.org
Every fucking year this place becomes more scrub territory.
Hudson Ramirez
>decent, but >windows
are you retarded? truecrypt and veracrypt are supported natively on Linux
$ man cryptsetup
$ sudo cryptsetup tcryptOpen /dev/sda2 first-encrypted-partition
$ sudo cryptsetup tcryptOpen /dev/sda3 second-encrypted-partition --veracrypt
gitlab.com
Jackson Foster
>In contrast with its current standing over RSA, elliptic curve cryptography is expected to be more vulnerable to an attack based on Shor's algorithm.[39] In theory, making a practical attack feasible many years before an attack on an equivalently secure RSA scheme is possible.
Brody Ross
they are not, is a neckbearded autist
Connor Turner
>If the police want my files I will happily give up my passwords
Cuck. Bet you're a Britfag.
Logan Morris
>truecrypt last update 3 years
Really....?
Read up.
I'm done holding hands.
Josiah Evans
You are the true autist here.
Nice job suggesting 3 year old vulnerable software.
Cameron Anderson
Wow. Impressive.
List flaws that exist in every fucking file encryption software.
Benjamin Parker
Yeah and you can mount NTFS filesystems on Linux, too. But why the hell would you do that, except to work around the presence of Microsoft's pile-of-shit operating systems? In the absence of Windows, Truecrypt, Veracrypt, and their on-disk formats, have no use.
Brody Ross
That's ECDSA not ed25519
Andrew Barnes
>In the absence of Windows, Truecrypt, Veracrypt, and their on-disk formats, have no use.
It supports multiple platforms and has a nice gui.
Michael Mitchell
true, you don't need TC/VC on Linux, but as soon as your drive has to run under Windows or macOS, you're lost... so dual booting people or people who use a dedicated drive in a VM rely on it... or if your PC components die and you need to make backups from a friend's / family member's computer not running Linux...
And since there are no known security issues, there is little to no reason to not use it
Jordan Diaz
Please point out vulnerabilities in VeraCrypt.
David Clark
veracrypt is infected with underhanded code from the NSA that weekend its security.
Nathaniel Gonzalez
That's some thoroughly impressive evidence you included to support your statement.
William Perez
Source please?
Andrew Roberts
his ass
Matthew Gray
This is why I don't trust Veracrypt.
Yes, it's open source, but I believe the developers intentionally introduced a low key 'bug' that can grant NSA free access if needed.
I still trust TC more simply due to the fact it has been proven effective in the real world AND the government has tried to completely shut it down. That obviously means it works.
Anthony Parker
Read what is GRC has to say about truecrypt.
grc.com
tldr; It's still the most powerful encryption software ever released to the general public. If the FBI hates this shit, and you know the NSA won't be looking for you, then it's good enough to trust it.
Joshua Ward
If you use VeraCrypt you can use Bitlocker just as well lmfao.
Kayden Fisher
Don't use Windows at all, any key entered could be sent anywhere you have no idea. Use Linux or BSD with full disk encryption.
Liam Sullivan
>Thought on Veracrypt?
Botnet, just use LUKS. I don't really know why everyone push this meme.
>How secure is KeePass?
It's fine, but better use it with password + keyfile (better yet if you generate that keyfile with /dev/ramdon)
>Encrypting cloud data best practices?
No cloud is best cloud but if I have to -> GPG
>Has the NSA cracked AES yet?
I think it is still safe but I'm not sure.
Kayden Peterson
>Shor's algorithm can also efficiently solve the discrete logarithm problem, which is the basis for the security of Diffie–Hellman, elliptic curve Diffie–Hellman, elliptic curve DSA, Curve25519, ed25519, and ElGamal.
Lucas King
Back to /r/eddit fucking reptilian