robmandu

Monday — June 20, 2011

Now anyone, not just cops with a warrant, can peek inside your Dropbox →

vruz:

—via laughterkey:soupsoup:

Dropbox Reader is yet another reason for Dropbox subscribers to be more responsible about how they interact with the cloud service.

Before the ToS change, the service boasted: “Dropbox employees are unable to view user files.” Now, not only are the files viewable, but with Dropbox Reader, the very fundamental elements of the account are penetrable.

Motherfucker.

To be clear, if you take the time to scan the Dropbox Reader’s README.txt file, you will quickly learn that the utility is simply scanning the contents of local files on your PC… not on the Dropbox servers “in the cloud”.

Furthermore, there’s no encryption broken here… these are plaintext database files that tell your Dropbox application the state of various files. You don’t need Dropbox Reader to see what’s in them… it just converts the information into something more easily readable. Nor is this information helpful in any way to break the encryption that’s in place.

I agree that it’s egregious that Dropbox lied to us about their capabilities for so long… but knee-jerk reactions to announcements where you invent imaginary vulnerabilities is bad, too.

This post was reblogged from united colours of vruz.

Permalink  Notes 116 notes

Notes

  1. meltheadorable reblogged this from shallanelprin and added:
    No problem, and just for the record, I wasn’t calling you out at all, my “misinformation” comment was directed at the...
  2. shallanelprin reblogged this from meltheadorable and added:
    Informative and helpful, thanks much!
  3. goesbumpinthenight reblogged this from bigbigtruck
  4. oh-you reblogged this from herdivineshadow
  5. herdivineshadow reblogged this from wilwheaton
  6. snarkasaurus reblogged this from wilwheaton and added:
    …wait, *what*? D:
  7. rmpark reblogged this from soupsoup
  8. retromodernelle reblogged this from alt0151 and added:
    Are you effing kidding me?
  9. deuscaincasual reblogged this from sebastianwaters
  10. alt0151 reblogged this from wilwheaton
  11. darkuncle reblogged this from soupsoup and added:
    tool in question requires access...contents of a user’s hard drive (in which case, you...
  12. robmandu reblogged this from vruz and added:
    To be clear, if you take the time to scan the Dropbox Reader’s README.txt file, you will quickly learn that the utility...
  13. mariposima reblogged this from vruz
  14. ausetkmt reblogged this from soupsoup
  15. vruz reblogged this from silas216
  16. artmsilva reblogged this from sebastianwaters
  17. schompie reblogged this from bigbigtruck
  18. terenceinmonochrome reblogged this from silas216
  19. silas216 reblogged this from wilwheaton
  20. wellmakeitifyoubelieve reblogged this from wilwheaton and added:
    D: side note: I feel I get all my important news from Wil Wheaton’s tumblr…
  21. homelabidea reblogged this from wilwheaton
  22. androboiinprogress reblogged this from bigbigtruck and added:
    I don’t use Dropbox but I wanted to signal boost, ‘cause this is really fucked up.
  23. ghost-of-algren reblogged this from wilwheaton and added:
    This is why cloud computer for anything more valuable or personal than music files is flash in the pan.
  24. ryankarl reblogged this from bigbigtruck and added:
    hoooray! invasion of privacy! guess who’s never using Dropbox again.
  25. plaiddingsbyplaidofplaidness reblogged this from bigbigtruck
  26. chrisdwoo reblogged this from wilwheaton and added:
    Fixed the headline. Stop being a fucking troll. In order to use Dropbox Reader you need to hijack the user machine in...
  27. commedesfuckdwn said: You get what you pay for.

← Previous Post Next Post →

About

NOTICE.
--
Persons attempting to find a motive in this narrative will be prosecuted; persons attempting to find a moral in it will be banished; persons attempting to find a plot in it will be shot.
--
BY ORDER OF THE AUTHOR
Per G. G., CHIEF OF ORDNANCE

Credits