Slashdot Mirror
Symantec To Acquire PGP and GuardianEdge
An anonymous reader noticed the news that Symantec has bought PGP and Guardian Edge for $370 million. They plan to standardize their encryption stuff on PGP keys.
← Back to Stories (view on slashdot.org)
Let the soul sucking begin!
What doesn't kill you only delays the inevitable
It's Pretty Good Proprietory!
Great minds think alike; fools seldom differ.
This is a smart move on their part, but I just have a really bad feeling about this.
I have zero trust when it comes to Symantec.
http://blindscribblings.com - Tasty pop-culture in conceptual fashion.
Having my data encryption in Symantec's hands makes me feel extremely safe..... NOT!!!
oh great, just what everyone was waiting for.
GPG is out there { http://www.gnupg.org/ } and we should use it.
Privacy is a human right. Democracy can't work if it's citizens are controlled like slaves in the roman empire.
Freedom is ours to take! Long live the RPG!
You can get a PGP key AND free 60 day trial of Norton 2013!
I his shocked at this development.... so shocked, I stole the summary's "h".
See my journal for slashdot ID's by year. Mine created in 2005. http://slashdot.org/journal/289875/slashdot-ids-by-year
You can just bet there will be backdoors for the NSA/CIA/FBI/etc in no time.
Obama's legacy: (N)othing (S)ecure (A)nywhere and (T)error (S)imulation (A)dministration
>> You can just bet there are already backdoors for the NSA/CIA/FBI/etc.
Fixed that for you.
93rd rule of Slashdot: No matter how obvious my sarcasm is, my comment will be taken seriously by someone.
Some years ago PGP was bought by Network Associates Inc (which was a merger of McAfee + Network General).
McAfee, Symantec? Meh...
This really sucks. In dial-up days, I used a cool, lightweight firewall application published by WRQ called AtGuard. Symantec licensed the product and incorporated it into their own software; the stand-alone product known as AtGuard then disappeared from the market. I used to use Partition Magic. Again, Symantec bought it and it exists no more.
With that little bit of sample history, I'm sure we can bid PGP farewell.
You should all be using gpg =)
PGP was bloatware before. Now that the most talented producer of bloatware in the world (Symantec) bought it, the PGP software will might soon win the bloatware of the year award.
I work for a giant TLA. Our AV is Symantec. Our removable media and whole-disk encryption products are in mid-migration to all-GERS (from a combination of GERS and WinMagic).
We're headed straight to hell, aren't we?
Everybody seems to buy eachother this week. By the end of the year the Internet is run by three companies: MicroApple (software), HP (hardware) and Ciscoogle (Internet)
There was a time when despite not being Open Source licensed, the source was available. I don't know if it's still the case.
Dilbert RSS feed
TrueCrypt is reliable, reputable, fast, free, open source, and works on Windows, Mac OS X, and Linux.
The TrueCrypt documentation is very good, but not perfect.
TrueCrypt can encrypt a file that contains other files (a drive letter) or encrypt an entire partition, even the boot partition.
No one I know has any connection with TrueCrypt. We are just happy users.
Considering my extensive experience, you are being too positive about Symantec.
Now, it's Pretty Good Privacy. Soon, it will be Poof Gone Permanently.
You are not the customer.
I work for a giant TLA. ... We're headed straight to hell, aren't we?
humm I believe you have already arrived
'...if only "Jumping to a Conclusion" was an event in the Olympics.'
He works for the IRS dosnt he? So yeah, he has his own slice of hell.
The good side to this is, they'll cram it into a package and force it down everyones throat, meaning more people will use encryption. This will at the very least make encryption more well known and possibly get normal people talking about it. Right now theres really no reason for any normal person to use encryption, regardless of what the paranoid slashdotters say. This will help get people thinking about it even if they don't need it.
The bad side is, it'll be a bloated, slow pile of shit.
The ugly side is, it'll encrypt everything just fine, but the password input mechanism will come with your password already entered for you so all you and visible in clear text, effectively rendering it useless ... just like their AV products.
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
Regardless, I would assume the NSA has its fingers everywhere. Backdoors are not trivial to catch in the source code, like the famous if (uid = 0) test on an obscure flag combination on an obscure call.
Don't get me wrong, I'll trust OSS a lot more if the code can be read by anyone,but what good is the potential if no one actually does it?
The beauty is the I don't do anything the NSA cares about, I just like my privacy. Anyone powerful enough to get my personal data has bigger fish to fry.
93rd rule of Slashdot: No matter how obvious my sarcasm is, my comment will be taken seriously by someone.
I've always wanted encryption-software from people who can't write a fucking uninstaller properly.
-- Linux user #369862
It's a pretty nice place to work if you're in IT. Other parts of the organization vary widely. Generally speaking, if you're willing to work hard at helping people, you can find a place to do it here.
This may be blasphemous, but I actually *like* my job.
You shouldn't be using PGP for email encryption anyways. S/MIME is built into almost all modern email clients.
Does S/MIME work with a web of trust like that of PGP and other implementations of OpenPGP, or does it rely exclusively on central commercial certificate authorities?
PGP co-founder takes OS security job with Apple
http://www.theregister.co.uk/2010/04/22/jon_callas_joins_apple/
but what if the agent just needs a few XP to "level up"??
Any person using FTFY or editing my postings agrees to a US$50.00 charge
I wonder how long until this becomes part of the Symantec Suite of malware that comes pre-installed as a trial in most big-box computers. Just think of the kind of money they'll rake in when the 60 days is up and the user is unable to decrypt their data... Of course, I'm sure it won't be encrypted by default, but it will certainly have some big red flashy box letting users know their computer is "at risk" and give them a shiny button to click to set up whole disk encryption. Then when the trial period is over, the passphrase quits working until they re-activate their encryption. Brilliant!!!
Truecrypt is not the same thing as PGP/GPG. Truecrypt is great, mind you, but it is not public key cryptography and signing, with web-of-trust. It's just data encryption and hiding.
For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
I've kept a copy of the installer for the freeware version of PGP before they started getting uppity about it.
Works on XP just great. Version 8.0.2.... dunno if this version is still found in the wild....
"Would it kill you to put down the toilet seat?" -- Maya Angelou
When I worked back at Network Associates (a merger of Network General and McAffee Associates) they owned it. Now it is bought by a competitor a decade later. Just funny, that's all.
The encryption portion of the PGP software is open source.
PGP was doing over 100 million a year in business (dropped down to 75 last year with the recession). They could have IPOd at a billion. However, because most of the upper management was originally from Symantec they took this bad deal.
There's one more company that exists in that ecosystem... BRAWNDO! It's what your programmers crave. Crushing
Another product gone. I wonder what's waiting in the wings?
"The greatest lesson in life is to know that even fools are right sometimes" - Winston Churchill
I don't do anything the NSA cares about right now,
Fixed that for you.
It used to be the Japanese, then the commies, now the Muslims. Who's to say in 20 years it wont be some group you happen to be a part of.
This is my sig. There are many like it but this one is mine.
Until you come to realise that, with all that expensive computing power and data mining algorithms, they can happily fry you, your neighbours and the big fish in the same pan.
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
PGP got taken over by McAfee / Network Associates years ago. Look here: http://www.openpgp.org/members/nai.shtml
They took it over and killed it.
Well, it was already dead. Although we loved PGP at the time because it was encryption when no one was allowed to have it, the product itself was very badly designed. The user interface was hostile (Trust? Invalid? Implicit? WTF?), and although they provided E-mail plugs for Eudora and Outlook they never supplied one for Mozilla/Thunderbird. You had to copy paste through the clipboard which was a huge pain.
Then there were compatability problems over RSA keys (dropped thanks to those ratbags Rivest, Shamir and Adleman) and the now-thankfully-dead IDEA (why didn't they choose an unencumbered algorithm?) so you couldn't guarantee someone sent PGP mail could actually read it. You couldn't even be sure you could look at your own e-mail with an older version.
Add all this together, and little wonder it tanked.
PGP never got with the times and gave us a nice fluid GUI. Instead their GUI mimiced the CLI. The McAfee / Network Associates take over made it worse; they made parts of payware (so suddenly PGPDisk you were using was no longer available unless you paid CASH) and stopped releasing the source. Phil (creator of PGP) complained they were neglecting it, but McAfee didn't care.
PGP with its confusing interface remained sadly stuck in the world of DOS. Sadly GNU PgP (GPG) copied the same cryptic command line interface, so never improved. There are plug-ins for Thunderbird now, but they're not smoothly integrated and the horse has long bolted.
My friends and I who were all PGP mad gave up and now exchange e-mail plaintext via Gmail. As Scott McNeally said, "You have no privacy. Get over it." He was wrong, but I guess we did.
I was trying to differentiate ability to get info on /anyone/ vs ability to get info on /everyone/ but I guess I didn't make it clear. As long as you have nothing to hide AND htey can't watch us all, life is good.
93rd rule of Slashdot: No matter how obvious my sarcasm is, my comment will be taken seriously by someone.
No one else is using it and that is the point
Once a comms product drops below critical mass it's dead.
GPG is also reliable, reputable, fast, free, open source, and works on Windows, Mac OS X, and Linux.
What we need is a list of things PGP can do that the free, open source GPG can't do. Is there anything? If GPG can do everything PGP can do, then there is no reason to pay a lot of money for a closed-source alternative.
For example, here is the GPG manual: web-of-trust.
It would be difficult to trust closed-source encryption software, especially from a company that so many people who have commented here have said they have found unreliable.
you realize that MIT isn't a "company"?
This page begs to differ. MIT is a non-profit corporation.
Besides, you don't even NEED keyservers for the system to function.
Without keyservers, how would you follow the signature chain in order to verify that the public key that you're using to encrypt a message actually belongs to the recipient?
We've been through this once before, when the original PGP was acquired by Network Associates (McAffee). Didn't they learn their lesson after that fiasco?
Where is the wisdom we have lost in knowledge?
Where is the knowledge we have lost in information?
> He works for the IRS dosnt he? So yeah, he has his own slice of hell.
Not necessarily. One of the Disciples/Apostles was a tax collector, too (actually, probably a tax farmer, which is far worse).
There was a time when despite not being Open Source licensed, the source was available. I don't know if it's still the case.
Gee, I wonder if there may be a way to find out...
http://lmgtfy.com/?q=pgp+source+code
I simply didn't care enough. I use GnuPG anyway.
Dilbert RSS feed