Web Security and Journalists
From phishing and password cracking to vulnerabilities in Skype and Firefox: how security has become an increasingly pressing issue for journalists
669 Viewers•4,707 Page flips•187 Followers•32 Stories
Photo: i.guim.co.ukMost recent stories in Web Security and Journalists
If you value your privacy or are worried about what might happen if Dropbox were compelled by a court order to disclose which of its users have stored a particular file, you should encrypt your data yourself with a tool like truecrypt or switch to one of several cloud based backup services that encrypt data with a key only known to the user.
http://paranoia.dubfire.net/2011/04/how-dropbox-sacrifices-user-privacy-for.htmlSpiderOak encrypts your files and then sends them securely to their servers. The key to decrypt those files is on your machine. The key and the files aren’t kept together. It means, of course, that you have to have a reliable password system in place (I use LastPass and 64-character strings) but means people can’t access your unencrypted files on the ‘cloud’ server.*
http://dougbelshaw.com/blog/technology/why-im-saying-goodbye-to-dropbox-and-hello-to-spideroak-hive/I would wager that they're opening it in order to generate a thumb or preview, or maybe for search indexing, and libreoffice is a good way to achieve this on linux - particularly if they're only opening it once, as they probably use the hash of the file.
We do exactly this on our eCommerce platform, before wanging stuff into s3 or glacier and just keeping a reference kicking around.
On the other hand, you have just discovered an information disclosure (host IPs) vulnerability in dropbox. https://news.ycombinator.com/item?id=6375135
See more stories
Web Security and Journalists
Magazine
