Xbible’s approach is security through ambiguity. It requires a password, but our product is shipped without documentation, and it was intercepted no one would know its real purpose, IT professionals would easily see there is an encrypted storage volume in it. The password is supplied to the user via email or separately mailed piece of mail. Users should absolutely not carry an xbible USB flash drive into airport or border of a hostile country with any kind of printed of documentation.
Truecrypt’s web site decided to issue a statement telling their audience not to use Truecrypt any more and to use a new heavily crippled version (7.2) to open their Truecrypt volumes and move their data to another type of product.
Here’s why this statement is fishy:-
- There is a recommendation to use the similar “Bit Locker” product, which comes with Windows 7 Pro and Ultimate and 8 Pro editions only, Truecrypt works on any Windows, Mac or Linux computer and is free. Bitlocker isn’t free and can’t be used for a non-profit project like us. Our project is intended for any PC running XP, Vista, 7 or 8.
- It refers to Windows XP official support being discontinued (which is true) why does this have anything to do with Truecrypt? Its an independently written product that works on all three major computing platforms, not limited to a discontinued 2001 version of Windows.
- All the discussion forums are gone, there was lots of clever enthusiasts helping other people with assisting with using this type of security software.
- A recent audit of the software, the first stage done just a few weeks ago, funded by donations declared Truecrypt to have no significant issues.
Our conclusion is this extremely useful tool for protecting sensitive files has been sabotaged, as the web site appears hijacked with a poisoned version, as some IT journalists have flagged this version as containing malware.
Some people might concerned that we use Truecrypt. This software is fine for this purpose. We only use the previous most trusted version, 7.1A. Any software is going to have flaws, but this is less risky then if we release the xbible with all the content undisguised, as we really want to see this bible software used in countries where spreading the gospel is illegal.
Whoever did this has probably succeed at destroying the reputation of this fine application and the documentation and the download of the previous version, which you can get 7.1 from here.
We’d like to see someone take over Truecrypt with a new version or a derivative, and host and support it in a fashion to show it hasn’t been tampered with and that the code is transparent.
Xbible development will continue as the only encrypted collection of electronic bibles to be used in countries where the gospel is not welcome.
Feel free to contact us if you have any concerns.