TrueCrypt is a consumer facing Open Source project. Those rarely have a large developer community and seldom get patches. Most successful ones are backed by corporate interests (Firefox, Eclipse, VirtualBox, ...).
Having no need of TrueCrypt himself, no other developer in the community to whom he could entrust the project and faced with drudgery the like he probably also has at his job (except he gets payed there), he probably did not want to continue developing and improving TrueCrypt (e.g. EFI support).
At this point. Since it is a critical security product there is no other option then to warn of all users. If there is a fork, it has to earn its reputation first.
I view truecrypt.ch as a bad development, since a) TrueCrypt is trademarked by the developer and b) the TrueCrypt license explicitly says that you cannot fork the project without renaming it to something other than TrueCrypt.
See https://www.grc.com/misc/truecrypt/truecrypt.htm "And then the TrueCrypt developers were heard from . . ."
In particular: many people on HN seem to think that Linux Truecrypt is the most important product of the Truecrypt project, but the developers don't see it that way; they started the project for Windows, and Windows has good FDE now.
Only for those running Ultimate or Enterprise edition. What's everyone else supposed to use?
A BitLocker's "feature" is that you can recover your key! So can Microsoft, NSA, etc. See: https://twitter.com/TheBlogPirate/status/471759810644283392
It seems like people are still somehow willing to believe that even if a spy agency had set its eyes on Truecrypt, they could not force them to make arbitrary statements to people sending them e-mails or members of the audit project.
Open Source: You can analyze the source code and build it yourself - which is great if you don't trust anyone to give you binaries from what you analyzed. Usually at least free as in "free beer".
Free Software: Open source software which gives you lots of permissions via its license, while making sure you get to keep these permissions. Usually free as in "free speech" (in addition to "free beer").
TrueCrypt not being free as in speech is a bummer, but being able to inspect the code and build it yourself is a critical advantage, especially when it comes to cryptography. I have a hard time imagining BitLocker not having any backdoors built in. At the very least it'll have some kind of weak random number generator or whatever, making sure that with the right algorithm you get to crack it within a few minutes or so.
TrueCrypt IS Open-Source. You can read the source.
It is not, however, free software. It's free to use, but not free as in GPL.
http://jordi.inversethought.com/blog/5-things-we-have-forgot...
However an anonymous person could not do anything about enforcing their copyright without losing their anonymity. You can't sue someone anonymously (you as the plaintiff), you can't DCMA anonymously, etc etc.
Trademark is a registration mark unlike copyright (copyright is automatic in almost every state in the world according to a few treaties). Broadly, provided you pay your fees then you retain a granted trademark. There are trademarks that are unregistered, acquired by use in trade, but it's a very weak instrument. Non-use can be grounds to contest a trademark - so it's almost impossible to retain a mark and remain anonymous as you need to be trading using that mark and usually trading requires you to disclose identifying information in some way.
Also USPTO's TESS facility gives the trademark assignee information, http://assignments.uspto.gov/assignments/q?db=tm&qt=sno&reel... .
BitLocker is not open source and is pretty much guaranteed to have a backdoor considering Snowden's leaks about Microsoft and NSA.
I haven't come across any new and definite information since the hack/shutdown.
This is pretty sad/funny.
Dino's Pizzeria is my favorite place to get pizza. I have never had a pizza from Dino's Pizzeria.
There were a bunch of other tweets with further details, but those seem to have been deleted.
https://twitter.com/AlyssaRowan/status/472303977997279232
Note: I am not claiming this is necessarily true.
I had to use this mirror recently as there are already bad copies floating about; it is a trusted hosting for the last ungimped version for windows and linux. check the hashes n' sigs!
