Ooops
Bolloxs dropped.
Great to remind myself of why I don't use them.
A security engineer has complained that a feature of Dropbox Paper, a document collaboration tool, leaks email addresses by design. Koen Rouwhhorst observed on Twitter that “If you share a Dropbox Paper document publicly, any viewer can see the full name and email address of any Dropbox user who ever opened that document, …
No question the default settings need to be the other way round. Requiring a user action in order to keep their personal details private is utterly unacceptable and, I dare say, illegal in many countries.
I'd be marginally less unhappy if logging back in did not invoke quite so much cross-site scripting from the usual data-slurpers.
Trouble is, who else (besides Google WhatIsYourBloodGroup) has an Android client where I can simply open an existing document in my private cloud workspace and start typing?
I had to re-install it on my laptop as a new client uses it. I'm sent Dropbox Paper email ads every day but haven't nibbled on the bait yet.
Dropbox functionality isn't very impressive, and a business subscription is three-user minimum at around US$750 per year. Glad I'm not paying the freight.
...when you share a fake PDF file via dropbox and convince loads of idiots to sign in to legit dropbox to click on the fake PDF. And then they all leave posts saying "Jane did you mean to send me this? Its not working" so I now get to see all the idiots that fell for the "Clearly a fucking phishing email because the owners mailbox was compromised" scam.
Time to resurrect my ownCloud (or whatever it happens to be calling itself this week) setup.
Or maybe treat myself to a NAS box.
I've cancelled my Dropbox Business service largely because of the 20%+ price increase they tried to slip under the radar but also because even if I did use all of the space on offer I'd undoubtedly run into problems with backups/rehoming of data should everything go wahoonie-shaped. Whilst it was highly unlikely that I'd ever use Dropbox Paper, the fact that it hoovers data up doesn't surprise me in the least.
In the immortal words of The Exploited: "Fuck 'em".
We have left all of the dropbox type problems in the dust since we've started using Syncplicity. No more security holes and I can access my data anywhere with all the bells and whistles. Reading this just makes me feel better about my company's decision!