I know I'm probably the last one here to have heard of this, but...
-
OK, looking on the "server" machine into services that aren't running (because it does seem pretty weird that it manages to do everything using only the browser), I found upload/download/sync services, and a bunch of XML config files. Three of the config file are just file listings, and I presume that they are copied to/from their server to display the file listings. The fourth one contains all the personal information. Here's its (redacted) content:

<BaseFolderPath value="[redacted]" />
Note that I didn't have to redact the e-mail address, because it wasn't there, and the user and computer IDs were numeric. I have yet to find anything at all on "client" machines -- I've accessed files from Windows, Android, and iOS machines. Nothing is installed on them, I've found nothing copied into them, other than the files I copied, and everything is done exclusively through the web-app, in a browser window. And, just like the "server", all the web-app asks for is an e-mail address and a user name/password combo.
I wanna be a eunuchs developer! Pass me a bread knife!
Mark_Wallace wrote:
Three of the config file are just file listings, and I presume that they are copied to/from their server to display the file listings.
That was what I was getting at. Depending on what they are, your file names/directory structure in and of themselves could be an information disclosure; so if they upload/store the list is a potential concern. From the other direction, if you have a lot of files (especially if in a flat structure) pulling a full listing from your home PC to the remote one if not cached on their server could add noticeable latency over a slow connection. One that didn't occur to me earlier is that when you get a file off your home PC from a remote one, are you establishing a direct connection between your two PCs for the transfer; or is their server man-in-the-middling the transfer. The fact that they didn't realize that some privacy conscious people would care about these things enough to put them in their faq makes me worry that they only gave lip service to privacy in their implementation and six months from now we'll be reading about a presentation in a major security conference that pwned the platform a dozen ways over.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
I know. But the reasoning behind it being on by default is...?
I wanna be a eunuchs developer! Pass me a bread knife!
They're optimizing the user experience for customer service reps who'd otherwise have to help Joe "where's the anykey" Sixpack make it work. Or more likely Joe calling after drinking a sixpack to curse them out before going to a competitor instead.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
Mark_Wallace wrote:
Three of the config file are just file listings, and I presume that they are copied to/from their server to display the file listings.
That was what I was getting at. Depending on what they are, your file names/directory structure in and of themselves could be an information disclosure; so if they upload/store the list is a potential concern. From the other direction, if you have a lot of files (especially if in a flat structure) pulling a full listing from your home PC to the remote one if not cached on their server could add noticeable latency over a slow connection. One that didn't occur to me earlier is that when you get a file off your home PC from a remote one, are you establishing a direct connection between your two PCs for the transfer; or is their server man-in-the-middling the transfer. The fact that they didn't realize that some privacy conscious people would care about these things enough to put them in their faq makes me worry that they only gave lip service to privacy in their implementation and six months from now we'll be reading about a presentation in a major security conference that pwned the platform a dozen ways over.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
Dan Neely wrote:
Depending on what they are, your file names/directory structure in and of themselves could be an information disclosure
Sure, but -- I can't speak for you, obviously -- not many of us run Bloomberg, and the kind of "information disclosure" someone could get from the filename "Nipper's fourth birthday.mpg" ain't gonna ruin your life.
Dan Neely wrote:
From the other direction, if you have a lot of files (especially if in a flat structure) pulling a full listing from your home PC to the remote one if not cached on their server could add noticeable latency over a slow connection.
Um, I don't see that as something to lose sleep worrying about. I sometimes have to wait 10-15 seconds for CP pages to load. C'est l'Interwebs. Looking into the sync executable on the "server", I'm seeing a lot of soap statements (which you'd expect, since it's a web service), but I really don't have the desire to spend energy digging harder to find what transfer protocols or routing they're calling. On the "clients", you just get an aspx file in the browser, so there's not much to see. I don't have full network tracking on this (relatively new) machine, but when I download a file I don't see a new connection coming from basefolder.com, so it's very possible that it's a direct connection (and the speed is really high, too). AFAIK, DropBox et al route everything through their servers, when synching.
Dan Neely wrote:
The fact that they didn't realize that some privacy conscious people would care about these things enough to put them in their faq makes me worry that they only gave lip service to privacy in their implementation and six months from now we'll be reading about a presentation in a major security conference that pwned the platform a dozen ways over.
Oh, come on; that's just daft. It's a minimalist web-site, with a product for "the common man". They ain't gonna go into huge levels of technical detail in an FAQ, because their consumer base won't Ask such Questions Frequently, and, as I imagine you know, getting too techie on mere mortals frightens them away.
I wanna be a eunuchs developer! Pass me a bread knife!
-
They're optimizing the user experience for customer service reps who'd otherwise have to help Joe "where's the anykey" Sixpack make it work. Or more likely Joe calling after drinking a sixpack to curse them out before going to a competitor instead.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
I was thinking more "Because the NSA insisted".
I wanna be a eunuchs developer! Pass me a bread knife!
-
I upgraded to Office 2003. It works much better -- no ribbon, twice as fast, and no NSA back doors.
I wanna be a eunuchs developer! Pass me a bread knife!
-
They're optimizing the user experience for customer service reps who'd otherwise have to help Joe "where's the anykey" Sixpack make it work. Or more likely Joe calling after drinking a sixpack to curse them out before going to a competitor instead.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
Why not paper and pencil? Why not a banana?
I wanna be a eunuchs developer! Pass me a bread knife!
-
Why not paper and pencil? Why not a banana?
I wanna be a eunuchs developer! Pass me a bread knife!
-
Dan Neely wrote:
waging all things in the balance of reason
Did you really mean that, or did you mean "weighing..."? Maybe you are waging war on reason? :laugh:
I lean toward a translation error; but since the original is in a book in a language I can't read I have no way to confirm it. When I set the sig I struck out on finding an English translation of the whole book; and I don't know any Finish speakers who owe me enough a big enough favor to ask them to read an entire book to find the original. I got it from the Introduction[^] to another song[^] on an album. "Waging" is used on the recording, the online lyrics[^], and IIRC the album liner (but I'm not going to dig that out of the box now to post a picture of it).
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
Basefolder[^] is bluddy cool! No storage limits (it's on your HDD!), no nags, way less risk, etc. than DropBox, gdrive, or (security horror of horrors) onedrive. Just set up a new, ne'er to be used elsewhere e-mail address for it, install it on a machine you never switch off, and Bob's yer mascot! Hopefully, the android ES File Manager boys will add it as a "share to" destination, soon, but its own android app is usable enough.
I wanna be a eunuchs developer! Pass me a bread knife!
y agreeing to our terms of service, you hereby grant basefolder the license: To use, copy, transmit, distribute, store and cache files that you choose to store and/or share. To copy, transmit, publish, and distribute to others the files as you designate, whether through the sharing or public linking features of the Service, in each case solely to provide the Service to you I am not sure about this part of the agreement...
-
Because neither of those give you a similar user interface plus support for modern file formats?
But bananas give you niacin, which we've already established to be the panacea, and writing/drawing manually are good for hand-to-eye co-ordination, so can be instrumental in helping to stave off cerebral problems, but Libre office has absolutely no health-giving properties whatsoever.
I wanna be a eunuchs developer! Pass me a bread knife!
-
y agreeing to our terms of service, you hereby grant basefolder the license: To use, copy, transmit, distribute, store and cache files that you choose to store and/or share. To copy, transmit, publish, and distribute to others the files as you designate, whether through the sharing or public linking features of the Service, in each case solely to provide the Service to you I am not sure about this part of the agreement...
Attn: - "Files that you choose" - "As you designate". They can't send your files to your other machines if you don't give them permission to send your files.
I wanna be a eunuchs developer! Pass me a bread knife!
-
Basefolder[^] is bluddy cool! No storage limits (it's on your HDD!), no nags, way less risk, etc. than DropBox, gdrive, or (security horror of horrors) onedrive. Just set up a new, ne'er to be used elsewhere e-mail address for it, install it on a machine you never switch off, and Bob's yer mascot! Hopefully, the android ES File Manager boys will add it as a "share to" destination, soon, but its own android app is usable enough.
I wanna be a eunuchs developer! Pass me a bread knife!
To quote: "Using basefolder.com you can access your files from anywhere Your files, photos, music etc are not stored in the cloud They are all stored in your private computer. It is safe, secure and PRIVATE!" Umm, if you're using their website to access your files, how is it safe and secure again?
-
To quote: "Using basefolder.com you can access your files from anywhere Your files, photos, music etc are not stored in the cloud They are all stored in your private computer. It is safe, secure and PRIVATE!" Umm, if you're using their website to access your files, how is it safe and secure again?
Well, when their servers are hacked (which seems to be a common occurrence with all this cloudy stuff), the hackers won't find your naked selfies, because they're not there.
I wanna be a eunuchs developer! Pass me a bread knife!
-
Well, when their servers are hacked (which seems to be a common occurrence with all this cloudy stuff), the hackers won't find your naked selfies, because they're not there.
I wanna be a eunuchs developer! Pass me a bread knife!
-
Well, if that doesn't make the hackers think twice about what they're doing, nothing will.
I wanna be a eunuchs developer! Pass me a bread knife!
-
Well, if that doesn't make the hackers think twice about what they're doing, nothing will.
I wanna be a eunuchs developer! Pass me a bread knife!
-
I lean toward a translation error; but since the original is in a book in a language I can't read I have no way to confirm it. When I set the sig I struck out on finding an English translation of the whole book; and I don't know any Finish speakers who owe me enough a big enough favor to ask them to read an entire book to find the original. I got it from the Introduction[^] to another song[^] on an album. "Waging" is used on the recording, the online lyrics[^], and IIRC the album liner (but I'm not going to dig that out of the box now to post a picture of it).
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
But bananas give you niacin, which we've already established to be the panacea, and writing/drawing manually are good for hand-to-eye co-ordination, so can be instrumental in helping to stave off cerebral problems, but Libre office has absolutely no health-giving properties whatsoever.
I wanna be a eunuchs developer! Pass me a bread knife!
-
I lean toward a translation error; but since the original is in a book in a language I can't read I have no way to confirm it. When I set the sig I struck out on finding an English translation of the whole book; and I don't know any Finish speakers who owe me enough a big enough favor to ask them to read an entire book to find the original. I got it from the Introduction[^] to another song[^] on an album. "Waging" is used on the recording, the online lyrics[^], and IIRC the album liner (but I'm not going to dig that out of the box now to post a picture of it).
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
OK. From that introduction your quote is exactly correct, correctly spelled, as far as I can tell correctly meant and no, I've never seen that. Basically trying to destroy reason by destroying the balance that maintains it. Fits in with metallic rock. If you can't balance and weigh reason, you can't determine the better path for you to follow. Chaos seems to be the goal of that kind of rock. I'm not a fan so that could be an outsider's misconception of its goal.