BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] TrueCrypt EOL, what's next?
- Subject: [Discuss] TrueCrypt EOL, what's next?
- From: richard.pieri at gmail.com (Richard Pieri)
- Date: Fri, 30 May 2014 18:43:26 -0400
- In-reply-to: <CAAbKA3W3pYvv7bkR70mi8=kYVwE3HVBVbNAPkdv7ff7wmaC-AQ@mail.gmail.com>
- References: <217800c70e2414f199ab891a6d6db058.squirrel@webmail.ci.net> <5387A861.5070708@gmail.com> <5387CAA6.3010905@gmail.com> <53886781.5010107@blu.org> <ce7ae36e90ba425fbe814ccf3b0d9a11@CO2PR04MB684.namprd04.prod.outlook.com> <5388A7CF.5050001@gmail.com> <CAAbKA3VEx3gPey=EJi2gZccj5CcJeigq7fbwgsdZJzsGoOT1gA@mail.gmail.com> <CAJFsZ=o=8JKa3q26OpmN0ADQMPC4Oi4yfMEHz62P9gU=GQUvrg@mail.gmail.com> <CAAbKA3W3pYvv7bkR70mi8=kYVwE3HVBVbNAPkdv7ff7wmaC-AQ@mail.gmail.com>
Bill Ricker wrote: > ?From what Steve Gibson said, the "new" key was gotten early enough it > would have been well before current incident? -- if malicious, would > show significant premeditation. No, the keys in question are GnuPG keys and unless someone has figured out a key collision the GnuPG key used to sign the 7.1a binaries is the same GnuPG key used to sign the 7.2 binaries. There is no "new" key. Ignore the warnings; that's because I haven't signed the key on my key ring. [ratinox at chihiro: Desktop]$ gpg --verify TrueCrypt-7.2.exe.sig gpg: Signature made Tue, May 27, 2014 12:58:45 PM EDT using DSA key ID F0D6B1E0 gpg: Good signature from "TrueCrypt Foundation <contact at truecrypt.org>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: C5F4 BAC4 A7B2 2DB8 B8F8 5538 E3BA 73CA F0D6 B1E0 [ratinox at chihiro: Desktop]$ gpg --verify TrueCrypt\ Setup\ 7.1a.exe.sig gpg: Signature made Tue, Feb 07, 2012 3:56:28 PM EST using DSA key ID F0D6B1E0 gpg: Good signature from "TrueCrypt Foundation <contact at truecrypt.org>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: C5F4 BAC4 A7B2 2DB8 B8F8 5538 E3BA 73CA F0D6 B1E0 [ratinox at chihiro: Desktop]$ You can verify that the key fingerprint is correct for yourself. -- Rich P.
- References:
- [Discuss] TrueCrypt EOL, what's next?
- From: richb at pioneer.ci.net (Rich Braun)
- [Discuss] TrueCrypt EOL, what's next?
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] TrueCrypt EOL, what's next?
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] TrueCrypt EOL, what's next?
- From: gaf at blu.org (Jerry Feldman)
- [Discuss] TrueCrypt EOL, what's next?
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] TrueCrypt EOL, what's next?
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] TrueCrypt EOL, what's next?
- From: bill.n1vux at gmail.com (Bill Ricker)
- [Discuss] TrueCrypt EOL, what's next?
- From: bogstad at pobox.com (Bill Bogstad)
- [Discuss] TrueCrypt EOL, what's next?
- From: bill.n1vux at gmail.com (Bill Ricker)
- [Discuss] TrueCrypt EOL, what's next?
- Prev by Date: [Discuss] TrueCrypt EOL, what's next?
- Next by Date: [Discuss] Boston Linux and Unix InstallFest LII today, Saturday May 31, 2014
- Previous by thread: [Discuss] TrueCrypt EOL, what's next?
- Next by thread: [Discuss] TrueCrypt EOL, what's next?
- Index(es):
