Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
the idea of offsite storage is to store in another physical place and i do not have that kind of place but others do. Also its inconvenient because you have to go back to that place, do the backups. As for online, there are zerio knowledge cloud services like ProtonDrive and Filen.io , if you upload you encrypted vault that double encryption at 16 characters per password/phrase its near impossible to crack not to mention , unlike 1pw servers, someone has to target your account personally for that vault.

another solution is to use cryptomator or veracrypt, now its behind 3 encryptions.
Is Veracrypt the successor to Truecrypt?
 
Probably there will be some large exfiltration of data. AI would make short work of it, finding the high-value stuff quickly. Servers which hold information that is mostly not password vaults would be a target I would choose, since there would be so much unprotected content. The vaults would be nice little extras, just part of the haul and quickly singled out.

you make it sound like getting into your account from reputable storage services a trivial task in the first place. I hardly heard of any breach from all the popular ones including lesser known ones like IceDrice, NordDisk, pcloud, yandixdrive

Is Veracrypt the successor to Truecrypt?

from wikipedia, it says its a fork. That being said, if any one understands encryption, please explain how veracrypt is better/worse than a password protected zip file.

from wikipedia:

  • The VeraCrypt development team considered the TrueCrypt storage format too vulnerable to a National Security Agency (NSA) attack, so it created a new format incompatible with that of TrueCrypt. Support for the older TrueCrypt format was dropped in October 2023 starting with VeraCrypt 1.26, but older versions of VeraCrypt are still capable of opening and converting volumes previously created in the TrueCrypt format.
 
  • Like
Reactions: DCIFRTHS
you make it sound like getting into your account from reputable storage services a trivial task in the first place. I hardly heard of any breach from all the popular ones including lesser known ones like IceDrice, NordDisk, pcloud, yandixdrive
No, it won't be trivial.
 
you make it sound like getting into your account from reputable storage services a trivial task in the first place. I hardly heard of any breach from all the popular ones including lesser known ones like IceDrice, NordDisk, pcloud, yandixdrive



from wikipedia, it says its a fork. That being said, if any one understands encryption, please explain how veracrypt is better/worse than a password protected zip file.

from wikipedia:

  • The VeraCrypt development team considered the TrueCrypt storage format too vulnerable to a National Security Agency (NSA) attack, so it created a new format incompatible with that of TrueCrypt. Support for the older TrueCrypt format was dropped in October 2023 starting with VeraCrypt 1.26, but older versions of VeraCrypt are still capable of opening and converting volumes previously created in the TrueCrypt format.
I was a Truecrypt user. I remember when it was abruptly abandoned, and there was "internet chatter" that the developer(s) thought it was insecure. I haven't looked into it since. I could have looked it up instead of asking - sorry if I came across as lazy. Thanks for looking it up!

What do you use for Zipping, and password protection?
 
I was a Truecrypt user. I remember when it was abruptly abandoned, and there was "internet chatter" that the developer(s) thought it was insecure. I haven't looked into it since. I could have looked it up instead of asking - sorry if I came across as lazy. Thanks for looking it up!

What do you use for Zipping, and password protection?

I did a little bit of research and best format to choose is 7z which has AES-256 encryption (as far as i know this means its as secure as possible) . Its open source and multi platform but does not have native app for macos. You can use free Keka app which is extremely friendly or the ugly GUI Peazip. Both FOSS. If you use any remember to donate or buy Keka from App Store (its free on the website).

Encrypt your data using a program like crytpomator and then you can store on Dropbox or wherever. Best option.

The problem with cryptomator is that you have to store the files on your drive and sync it. I want to have the data on the cloud and save local space. Furthermore, you have to keep all backup files within the cryptomator directory which might not be how you want to setup your folders. Even more so, it does not work natively on the macos you have to install something called macfuse that manipulates the kernel or something. I am not too sure how it works and how safe it is.

Someone with more knowledge should clarify this.
 
I did a little bit of research and best format to choose is 7z which has AES-256 encryption (as far as i know this means its as secure as possible) . Its open source and multi platform but does not have native app for macos. You can use free Keka app which is extremely friendly or the ugly GUI Peazip. Both FOSS. If you use any remember to donate or buy Keka from App Store (its free on the website).



The problem with cryptomator is that you have to store the files on your drive and sync it. I want to have the data on the cloud and save local space. Furthermore, you have to keep all backup files within the cryptomator directory which might not be how you want to setup your folders. Even more so, it does not work natively on the macos you have to install something called macfuse that manipulates the kernel or something. I am not too sure how it works and how safe it is.

Someone with more knowledge should clarify this.

Thanks for the update!
 
  • Like
Reactions: MacBH928
I did a little bit of research and best format to choose is 7z which has AES-256 encryption (as far as i know this means its as secure as possible) . Its open source and multi platform but does not have native app for macos. You can use free Keka app which is extremely friendly or the ugly GUI Peazip. Both FOSS. If you use any remember to donate or buy Keka from App Store (its free on the website).
I found out about 7z via Path Finder and then found Keka which is even better and is heavily multithreaded. Best format by far for so many reasons. Keka has versions from 10.4 Tiger to the latest macOS.
 
  • Like
Reactions: MacBH928
I found out about 7z via Path Finder and then found Keka which is even better and is heavily multithreaded. Best format by far for so many reasons. Keka has versions from 10.4 Tiger to the latest macOS.

heads up if you need faster compression and decompression there is a newer format called zstd but does not have password encryption
 
There was a strange cryptic message posted when TC suddenly ended. It said "TrueCrypt is Not Secure Anymore".

The strange capitalization, re-written, reads: "TrueCrypt is NSA"...implying that TC was developed by NSA.

It was never proven.

The last release contained a trojan that compromised the computer and stole keys.

VeraCrypt is developed by the same people, and is quite frankly suspect as well.

What was curious was right before TC was abandoned, there was a legal case whereby the authorities couldn't break the encryption of TC, and the suspect ended up going to jail for contempt of court instead for failing to hand over the keys.

Whether the Israelis ever broke it is unknown.

It was thought TC may be subject to differential cryptanalysis attack if an encrypted container was transmitted, modified, then transmitted again. I assume VC implemented a fuzzing algorithm to modify many more bytes than just the new or changed data.
 
There was a strange cryptic message posted when TC suddenly ended. It said "TrueCrypt is Not Secure Anymore".

The strange capitalization, re-written, reads: "TrueCrypt is NSA"...implying that TC was developed by NSA.

It was never proven.

The last release contained a trojan that compromised the computer and stole keys.

VeraCrypt is developed by the same people, and is quite frankly suspect as well.

What was curious was right before TC was abandoned, there was a legal case whereby the authorities couldn't break the encryption of TC, and the suspect ended up going to jail for contempt of court instead for failing to hand over the keys.

Whether the Israelis ever broke it is unknown.

It was thought TC may be subject to differential cryptanalysis attack if an encrypted container was transmitted, modified, then transmitted again. I assume VC implemented a fuzzing algorithm to modify many more bytes than just the new or changed data.
Thanks for remembering better than I did! I stopped using it because of what you expanded on.

Regarding the trojan, was that ever proven to be true?
 
No and i would say there not at fault eventually if you leave a basic website up and dont care about securing it will become comprised they had enough of maintaining it they have at interview with a website and said they were just done with the project also a major rewrite was needed this was when the move from bios to ufei was happening.

there could be other reasons but there all hear say at this point by now people should be using veracrypt really!
 
I won’t say how many times I have asked for this or the responses I received. All I can say is that I am very happy, and I hope 1Password continuous with successful development all the way through to deployment.

macOS Autofill

For those who prefer to see the url straight up: Okay, I usually put the link into words only. Is this a new feature on MacRumors to show a preview, or has my head been in the sand ☹️

 
I won’t say how many times I have asked for this or the responses I received. All I can say is that I am very happy, and I hope 1Password continuous with successful development all the way through to deployment.

macOS Autofill

For those who prefer to see the url straight up: Okay, I usually put the link into words only. Is this a new feature on MacRumors to show a preview, or has my head been in the sand ☹️


i dont see the big deal, auto filling from the app or extensions is the same. I hear people say extensions are dangerous but given the amount of people using password managers via extensions (millions) i hardly heard of something going wrong.
 
i dont see the big deal, auto filling from the app or extensions is the same. I hear people say extensions are dangerous but given the amount of people using password managers via extensions (millions) i hardly heard of something going wrong.
I would prefer the password being handled through the macOS API rather than a browser extension.

I’m looking forward to this.
 
i dont see the big deal, auto filling from the app or extensions is the same. I hear people say extensions are dangerous but given the amount of people using password managers via extensions (millions) i hardly heard of something going wrong.
Please do a search for “clickjacking” in this thread.
 
  • Like
Reactions: MacBH928
I would prefer the password being handled through the macOS API rather than a browser extension.

I’m looking forward to this.

This is a good step forward.

Currently I almost only use 1Password for websites when on my Mac. So, since I don't currently use Safari, I'll still have to use the extensions. Its good that the only 1Password extension that ever gave me problems was the Safari one; the other browsers' extensions always worked well. And I did turn on the setting in the 1Password extension that prevents clickjacking.

When Golden Gate is released I might try Safari again. I moved away from Safari because of the rounded corners in Tahoe. It will be good to not have to suffer with the 1Password Safari extension if I do go back to using Safari.

Autofill will also work on an application if that app's developer chooses to support it. Some of the apps I use where I occasionally need a password will likely not support it, but we'll see.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.