On 4 Feb 2004 01:23:31 -0000, in article
Indeed! I simply cannot believe this is how low SecurStar will stoop
to try and protect their shitty DriveCypt.

TrueCrypt will win in the end I'm sure. The USERS will vote!
LOL, yes, and I'm sure we can expect mirrors to start popping up
everywhere now. Thanks SecurStar.
Hehe.....
Kinda puts his recent temper tantrum into perspective doesn't it?
And hopefully we can look forward to many more versions from TrueCrypt
(once TrueCrypt tell SecurStar where to go with their ridiculous
claims).

Don't let SecurStar grind you down TrueCrypt. We, the users,
appreciate what you are doing.

Hey, take it easy (and *please* stop hitting the NG)!

Even though TrueCrypt may be down (for the time being, at least); it's
(literally) only a matter of time before further open source products are
released.

Hopefully though, the TrueCrypt team will be able to resolve the issues
SecureStar are throwing up without too many problems...

In article <***@anonymous.poster>, Anonymous-
***@See.Comment.Header says...

Stop this spamming!

Me too. I just had to put in my comments as well.
Right. Once you place a license on it, that license applies to all
distributes of that release.

You can change the license and re-release the exact same files, but it
wont increase any restrictions or limitations that the original
release did (not) have.
If that license says that, then it's probably not valid. You just
can't do that to stuff that has already been distributed with a
license that gives distribution / modification rights.

If SecureStar is claiming they signed something like that, then their
license with Paul is probably invalid / illegal. And Paul could
probably claim damages & extra fees from them for trying to claim
something they don't own the rights to.
**EXCELLENT** idea!

When DriveCrypt was freshly released, didn't SecurStar *continue* to
distribute both Scramdisk & E4M and their sources directly from their
own web site?

Those web sites just redirected you to a securstar web page that asked
for your email so they could send you a web site link and password for
you to go and download them.

I remember that becuase I refused to give them my main address and I
used a disposable address. (I already had the products, I was curious
as to whether they had changed anything or were offereing anything
new.)

I'd be willing to bet that if you went through the scramdisk archives
(and perhaps elsewhere) right here on goggle, you'd be able to find
references, comments, and links to where you could get hold of E4M
from SecurStar themselves.

If *they themselves* were distributing the old programs and their
sources, then that makes their entire argument invalid.

Perhaps you might want to look at this google thread here:

http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&threadm=66b01437.0110310340.1fd5bf45%40posting.google.com&rnum=14&prev=/groups%3Fq%3Ddownload%2Bscramdisk%2Be4m%2Bgroup:alt.security.scramdisk%26hl%3Den%26lr%3D%26ie%3DUTF-8%26group%3Dalt.security.scramdisk%26scoring%3Dd%26start%3D10%26sa%3DN

I'm sure there is more, but that alone should be interesting.

Of course, admittedly that does *not* prove that the files there were
distributing were the exact same files we already have & had. But,
with that and other items you could probably find in Google, you
should be able to easily pick apart SecurStar's claims.

"tadwoe"
One can extract from the Imad Faiad PGP658ckt09b3 distribution the
PGPdisk code only with the drivers.
It works well with WinXP SP1 but one must install the
full distribution to use only the PGPdisk function.

Remember that the first PGPdisk version was a stand-alone one.

cymago

Links to pgp658ckt
ftp://ftp.hacktic.nl/pub/crypto/pgp/pgp60/pgp658_ckt/pgp658ckt09b3.zip
ftp://ftp.zedz.net/pub/crypto/pgp/pgp60/pgp658_ckt/
http://www.staff.uiuc.edu/~ehowes/fixes.htm#ckt-un

Is just hot-air and bowel-gas. SecurStar is only trying to bluff and bully
their way to what they think will be a win for them. Of course, since they
are morons, they do not realize that any such attempts that they are making
is only speeding-up and escalating their inevitable demise. The errors of
TrueCrypt were to have real addresses, names and telephone numbers listed so
that they could fall victim to unfounded, frivolous, lawsuits, and
harassment. SecurStar has shown the true colors of their criminal
employees/partners, so expect them to be dirty in all ways until the bitter
end.

undertaker

On 4 Feb 2004 18:10:28 GMT, in article
Precisely!

Why the hell have SecurStar waited until now to try and complain about
the source code for E4M being available online? Sam Simpson's had it
available on his site for months, if not years but they had no problem
with that.

But when a competitor comes along with a better, free, open-source
product well............
Yep, exactly!

Whole thing smells like pure BS to me.
Personally, I hope SecurStar crash and burn for this. Their product is
inferior, their support is a joke and TrueCrypt have been able to do
with version 1 of their software what SecurStar couldn't even do by
version 4 of theirs.

You have most definitely lost my custom in this SecurStar (and yes, I
am/was a current customer of both DC and DCPP).

On Thu, 05 Feb 2004 00:11:15 GMT, in article
Oh put your dummy back in man! Do you want some cheese with that
whine?

Can't take competition eh?
LOL.You can keep your precious source-code Shaun.

Nobody gives a damn about you and SecurStar anymore.

TrueCrypt are delivering what you and SecurStar could not.

What, now you losers are going to go open source all of a sudden? Gee, what
a little competition will do.



I wouldn't buy anything from SS (apt initials) after this episode of thuggery
if Jesus Christ endorsed it.



Go to hell, both of you.



.
-=-
This message was posted via two or more anonymous remailing services.

What, now you losers are going to go open source all of a sudden? Gee, what
a little competition will do.

I wouldn't buy anything from SS (apt initials) after this episode of thuggery
if Jesus Christ endorsed it.

Go to hell, both of you.


.

What, now you losers are going to go open source all of a sudden? Gee, what
a little competition will do.



I wouldn't buy anything from SS (apt initials) after this episode of thuggery
if Jesus Christ endorsed it.



Go to hell, both of you.



.

That's so fucking lame, Shaun. And desperate. First of all it's
questionable at best that SS would go open source, and even if they
did, after the way you've yanked the security community's chain for
the last few years with your closed source product, why would anyone
buy open source SS when open source True Crypt is available?

And yes, it will be available, even with the web site down, you know
the source code and executable will start popping up everywhere (if it
hasnt already).

Scramdisk NT was based on E4M.
Scramdisk 98 driver includes work by Walter Oney.
E4M was partially based on SFS.
DriveCrypt uses E4M driver... Shall I continue?


We also remember you saying it was a HARD thing to do,
to make E4M work under Windows XP. To refresh your memory,
you said:

'And many many hours of burning the candle at both ends may be required
to deal with all of these.......

But this is the reason why we are reticent to release the DriveCrypt
source code...... UNLESS we can hide the solutions to these very
problems...

Why should we prevent our competitors (or would be competitors) going
through the hell we did ?

Given that the DriveCrypt device driver is a direct development of the
E4M driver, I know the answer to all these issues, and spent many many
solitary hours dealing with them. But I am afraid I must keep the
solutions to myself, as would anyone involved commercially...

However some people appear to think it's "easy"......'

[end of quote]




By the way, I thought you had left this newsgroup.

Hang on Shaun, the E4m license specifically allows derived works as long as
the product isn't called E4m - where's the problem? Who wants to go to all
the effort to write it from scratch if they don't have to?

If Paul didn't want this then he should have released it with this license.
If WH doesn't like it then tough shit - he can't retract the perpetual
license now.
And you've both been (rightfully...) praised for it.
SecurStar closing down TrueCrypt is hardly going to make DC popular, even if
you release and open source version!

Cheers,

Sam

Wilfried
accuses
of the
your
Why didn't Mr. Wilfried Hafner pay for the $1.15 million in
telephone service he was convicted of stealing?

People who live in glass houses shouldn't throw stones...

===========================================
German Hacker "Luzifer" convicted b
y SevenUp / ***@sec.de

SYNOPSIS

On February 5th, 1997, Wilfried Hafner aka "Luzifer" was
sentenced to three years incarceration - no parole, no
probation. I've got the story for you right from the courtroom
in Munich, Germany. This is one of the first ever cases in which
a hacker in Germany actually gets convicted, so it's
particularly interesting. (Although the court and I use the term
"hacking", this is actually a case of unethical electronic
fraud.)

LUZIFER

Wilfried Hafner (Luzifer) was born on April 6, 1972, in Breschau
Italy. According to his own circulum vitae, which he quoted in
court himself, he's been a pretty smart guy: He started
programming at 8 years,and cracked about 600 Commodore programs,
at 14, got a modem and then started a BBS. In 1990 he was
blueboxing to some overseas partylines to communicate with
others. But he didn't seem to use any other "elite" chat systems
like x.25 or IRC, so most people (including myself) didn't know
him that well. In 1992 he moved to South Germany to goto school.

WHAT HE DID

Luzifer set up some overseas partylines in the Dominican
Republic, Indonesia, The Philippines, and Israel. Some lines
included live chat, but most were just sex recordings. Then he
used a local company PBX (a Siemens Hicom 200 model), from his
homeline, which was only "protected" by a one digit code, to
dialout to his partylines and his girlfriend in Chile. He also
was blueboxing (which the prosecution calls "C5-hacking") from
five lines simultaneously, mostly via China. To trick the
partyline provider and overseas telcos (who are aware of
computer-generated calls) he wrote a little program that would
randomize aspects of the calls (different calling intervals and
different durations for the calls).

He got arrested the first time on 03/29/95, but was released
again after 13 days. Unfortunately he restarted the phreaking
right away. If he'd had stopped then, he would just have gotten
1 year probation. However, he was arrested again in January
1996, and has been in prison since.

Here are some numbers (shouts to Harper(tm)'s Index):

- Number of logged single phone connections: 18393
- Profit he makes for 1 min. partyline calls: US$ 0.35
- 0.50 - Total Damage (= lost profit of telco): US$ 1.15 Million
- Money that Luzifer got from the partylines: US$ 254,000
- Paragraph in German Law that covers this fraud: 263a StG
- Duration of all calls, if made sequentially: 140 days

THE TRIAL

This trial was far less spectacular than OJ's. While 7 days had
been scheduled, the trial was over after the second day. The
first day went quite quick: The court didn't have enough judges
available (two were present, but three required), so it had to
be postponed after some minutes.

At the second day, both, the prosecution and Luzifers two
lawyers, made a deal and plead guilty for three years prison
(but no financial punitive). In Germany, all sentences over two
years cannot be carried out on probation. But he has been
allowed the use of a notebook computer. Rumor has it that he
might be get an "open" execution, meaning that he has to sleep
in the prison at night, but can work or study during the day.

The deal looked like the prosecution dropped all counts
(including the one abusing the PBX in the first place) but two:
one for the blueboxing before getting arrested, and one count
for blueboxing afterwards. They don't treat all 18393
connections as a separate count, but just each start of the
"auto-call-program".

QUOTES

Here are some interesting and funny quotes from the trial: "Just
for fun and technical curiosity" - Defendant "Wouldn't one line
be enough for technical experience"? - Judge "I ordered 21
lines, but just got 5" - Defendant "Lots of criminal energy" -
Prosecutor "He's obsessed and primarily competing with other
hackers" - Lawyer "A generation of run down computer kids" -
Prosecutor "He may keep the touchtone dialer, but we cannot
return his laser fax, because the company's PBX number is stored
in its speedial" - Prosecutor "Myself and the Telekom have
learned a lot" - Prosecutor "New cables must be installed, new
satelites have to be shot into the air"

* Prosecutor about the consequences of used up trunks and intl.
lines "The German Telekom is distributing pornography with big
profits" - Lawyer

http://www.openphoto.net/mike/texts/Phrack50/P50-03.html

~~~~~~~~~~~~~~~~~~~~~
This message was posted via one or more anonymous remailing services.
The original sender is unknown. Any address shown in the From header
is unverified.

On Thu, 05 Feb 2004 08:20:20 GMT, in article
Yes, I agree with this totally.

F**k SecurStar, why not just reopen and if SecurStar *think* they have
a claim, let them PROVE it.

Found a bug on your page:
Q: How does Scramdisk compare to it's competitors?
PGPDisk. A previously free and open source program, the current
releases isneither.

Current release is open.

greetings
Carsten

Yes, Sam, E4M was beyond any doubt released before DriveCrypt.
This is what W. Hafner told us. He claims, that E4M contains certain
parts that Paul Le Roux had no rights to release (under the E4M
license). He also said that SecurStar had all the necessary
permissions and/or rights to the mentioned parts.
To be honest, we do not believe it either.
Paul told us that his lawyer had advised him not to comment on any
details regarding these issues - and unfortunately he hasn't. This is
a difficult situation for us, because we need a confirmation that the
E4M license is legal and valid. The only thing Paul told us was that
there was (and still is) a legal dispute between him and SecurStar
(intellectual property theft) and that he hadn't been involved with
SecurStar since 2002. If we continued distributing TrueCrypt, Paul
might someday have to pay consequent damages, caused by the allegedly
illegal E4M license, to SecurStar. We would like to protect Paul from
any negative consequences now. As soon as the E4M license is verified
to be valid, TrueCrypt distribution will continue.

We would like to thank everybody for their support. We appreciate it.


Regards,
David

Member of TrueCrypt Team

Hey, just post a disposable email address in here, and I'm sure somebody
will be willing to send you v1.0 and v1.0a and the source code for it.
(each package is 500k, total 2meg.)

Or if you are just interested in v1.0, just go over to one of the mirrors
and grab it. Although I can't vouch for their legitmacy since I haven't
downloaded from them.

I'm surprised somebody hasn't already put this up on sourceforge or
something, since that seems to be the place to put things like Lame, WASTE,
etc. etc. SF doesn't seem to care in the slightest what it hosts.