Slashdot Mirror

← Back to Stories (view on slashdot.org)

Gmail Commentary and Responses

Posted by michael on from the mail-pattern-blogness dept.

Phil Windley writes "In his inimitable style, Tim O'Reilly tells us why GMail matters. The piece is entitled, 'The Fuss About GMail' but that doesn't begin to properly identify the real meat of what Tim's saying. Tim does discuss some of the privacy concerns on GMail and why he's not concerned, but he also breaks new ground on why GMail is not just another free email system. For example, Tim talks about how GMail might herald an era of large centralized computing and calls for APIs to allow GMail content to be move back and forth between it and other systems." Reader chris mansley writes "Google is quietly responding all the flak being given to their new email service. They have added a statement to quell the growing list of concerns. No more keeping email forever is at the top of the list. The reviews have been sparse on details and screenshots, but now Google is providing a sneak peek here and here." The only thing I didn't like about Gmail was their apparent intention to keep your mail forever, regardless of your wishes. Since they've now clarified that they don't plan to do that, it doesn't seem like there's much of a problem any more. Yahoo and MSN already link your searches on their respective engines with your account profiles on their respective free email services, and no one seems to care (maybe because no one uses MSN or Yahoo as a search engine these days, but still).

16 of 290 comments (clear)

  1. We trust Google.... don't we. by LostCluster · · Score: 5, Insightful

    If you've got a trust-nobody mentality then what Google has to say means nothing, they're going to rip up their privacy policy and send every e-mail that goes through their system directly to John Ashcroft using their PageRank sorting technology to indicate which e-mails are most relavant to his desire to repeal every amendment in numbered order...

    Of course, if you're sane, you trust Google because if they really wanted to screw the world over, they simply could decide that since their search engine is so good, everybody needs to pay $25 a month to keep accessing it... or decide to start logging all search queries to a user-specific cookie... or just take their bat and ball and go home. They've already got enough power to mess with us even worse than Gmail could be, and they've yet to be caught abusing any of that power or going back on their word.

    That's how trust is really built... by letting them have the ability to screw up and seeing that they don't manage to do so. I'd certainly trust my e-mail with Google more so than I'd trust some of the other major "free e-mail" services out there.

    1. Re:We trust Google.... don't we. by FrYGuY101 · · Score: 5, Informative
      or decide to start logging all search queries to a user-specific cookie...
      Erm. Hate to break this to you, but they kinda already do. Your google cookie has a unique user ID... I love Google, well, probably MORE than the next guy, but this *is* something they do.
      --
      "If we let things terrify us, life will not be worth living."

      - Seneca
    2. Re:We trust Google.... don't we. by fhic · · Score: 5, Interesting

      I (often) half-jokingly describe Google as the compendium of all the world's knowledge. But I wonder how long that would continue if they actually did anything evil?

      There are a lot of search engines out there, and while Google is currently at the top of the list, nobody stays there forever. I can remember a time when Netscape was on top [I hear jwz in my head: shut up! :-)] For awhile it was Yahoo! and Altavista had a turn. Now it's Google.

      I'm just a lowly coder. I'm not enough of a visionary to know who will be on top in a year. I hope it's Google, but I'm entirely prepared for it to be Amazon or Altavista (again; has anybody noticed their recent changes?) or some brilliant kids from some community college somewhere who have nothing but a hosting account and some algorithms that will change the world.

    3. Re:We trust Google.... don't we. by afidel · · Score: 5, Insightful

      I trust Google as it stands today, but after the IPO I will trust them as far as I can throw a server farm. Any public company has a fudicial responsibility to their investors, and if times get tough or the shareholders scream enough then it is often difficult for even a well meaning management team to keep the customers interest in focus. That's why I'm not so hot on a Google IPO, they do well as a private company and I trust them a lot more that way. Why would they need an IPO anyways, they have all the money they need to implement any new ideas and none of the founders has said they are itching to cash out (and even if they are the remaining partners could leverage the corporate profits to buy out their share)

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
    4. Re:We trust Google.... don't we. by martin-boundary · · Score: 5, Insightful
      It's not about whether I trust Google's intentions. So long as Google is an American company, or more precisely so long as its headquarters exist in *any* country, there's a danger that the government of said country can bully them into giving up all the information they have on anybody.

      Look at the Millenium copyright laws: Google takes down copyrignted content as soon as someone sends them an email telling them it infringes. They have to, it's the law. The Church of Scientology uses those provisions frequently.

      Do you trust Google to treat your confidential data more seriously than their own survival? Why should you? Ashcroft or the FBI can ask google to hand over any ("terrorism related") information they like, and Google has to comply. It *has* to comply, whether they want to or not.

      That's why Google can't be trusted with my personal information. Not because Google could turn out to be bad guys later, but because to be law abiding, they have to give up my data if asked. At least if I keep my data on my own servers, it's harder to access.

      Remember, Google is *the* search king. They can't turn to the FBI and tell them "look, you can't do searches across all email account holders' archives, because it's too technically difficult". Instead, the FBI will say "do a search for "bin laden" across all your email archives, and give us the owner's addresses. And they'll comply, not because Google are the bad guys, but because Google are the *good* guys.

      No thanks.

    5. Re:We trust Google.... don't we. by FrYGuY101 · · Score: 5, Informative

      Unless you manually clean them (Or have your browser set to automatically clean them), the cookie actually expires on Jan. 17, 2038.

      There's a tin-foil type site called Google Watch with a bunch of information about Google.

      As I said in the grand-parent, I'm a larger-than-average fan of Google, so I believe most of the claims on the site are a bunch of paranoid rantings, but they do raise legitimate points about possibilities.

      --
      "If we let things terrify us, life will not be worth living."

      - Seneca
  2. Comment removed by account_deleted · · Score: 5, Interesting

    Comment removed based on user account deletion

  3. Spam Ideas - An Interesting Look at GMAIL? by Ieshan · · Score: 5, Interesting

    Which is a good point, right?

    Google right now faces a huge issue: "spam" websites designed to bomb it's search engine.

    The one common thing about all spam emails is that they have a link to a product page [unless they're *scam* emails, a completely different thing]. Google can use algorithms on mail that gets marked and checked as spam to nerf the page rankings of those webpages.

    Why is this important? Because it gives people a free service, gives google advertising money, and has a huge benefit to the search engine.

    The best filtering "algorithm" is 5 million users doing your filtering for you. Google doesn't have that right now, because they don't ask anyone to rate their web results. Google stands to gain a huge statistical advantage by incorportating email into their services.

  4. slashdot keeps every post you make by jeoin · · Score: 5, Insightful

    Isn't this true? What is the difference?

    I like this approach, it makes you think about what you say. Maybe some emails shouldn't be sent. If you have to worry about it, you shouldn't do it.

    --
    Jeoin
  5. They're just being honest... by LostCluster · · Score: 5, Insightful

    I think they've clarified they privacy policy to a level that us geeks should easily be able to understand...

    When you hit "delete", more often than not in computer land, your data is not immediately rendered unrecoverable. In most operating systems, deleted files are ushered over to a "holding bin" for a final clear-out command to really get rid of them in case we want to change our mind. Once the OS finally lets go of the file, the file system often takes the short cut of just removing the index pointers to the file and/or marking the space as "unused", but leaving the data still spinning on the drive until something eventually wants to use that space... let's face it, a "quick format" doesn't have time to hit every track on the drive, it's taking a shortcut and that's what makes it "quick".

    So, really, they're just saying that in order to make their magical mega-system work, "delete" isn't going to mean "Expunge it all right away!" but simply "Put in the pile that'll be discarded the next time the garbage collection process comes by." Therefore, they'll need to keep your "deleted" e-mails for an undisclosed length of time... they don't intend on keeping it forever, although they have to word the privacy policy in a way that might be misread that way because to do less just wouldn't be being honest.

    If you don't have root access to the e-mail system where you work, you don't really know if "delete really means delete" on that system either. Your boss may in fact have access to your e-mail... you might as well assume that they do unless you know otherwise.

  6. Google: Gentlemanly Like Business Practices by pararox · · Score: 5, Insightful

    I'm really impressed with how Google has handled themselves since their inception. They have certainly been innovative, but most importantly they employ things that aren't seen enough in today's business world: openness and integrity.

    I'm inherently paranoid (or, perhaps more appropriately, private) and always take things with a grain of salt - especially when it's coming from a business the size of Google.

    That said, I don't blame Google for their desire to recoup costs by generating targeting advertisement. I'm very much impressed with how open they have been about the procedures they will use to actually target the ads. With this recent letter that so quickly and openly answers concerns made public recently, I'm happy to say here is a company that has been widly successful - all while being true gentlemen.

  7. What if it IS just email? by JelloGnome · · Score: 5, Insightful
    What if it's just 100GB email and nothing more, nothing less? Google wants customer loyalty; that's a good enough reason to do this. Their IPO is coming soon, everyone's watching the company. But what if Microsoft's search engine is actually good? What if Microsoft's search engine comes bundled with all future versions of windows, and windows updates (and believe me, it will). What if Microsoft sets your default home page to its own search engine EVERY TIME you update?

    At least with an e-mail service, Google will be standing on two feet when this happens. People will want to check their GMail no matter what search they are using. Google isn't even close to the financial power of Microsoft right now, so it needs to prepare for the attack...

  8. Workaround for gmail and privacy. by Anonymous Coward · · Score: 5, Interesting

    1. use a browser/email plugin that can automatically encrypt your email before sending it.
    2. use a browser/email decrypter plugin to unencrypt your mail when you read it.

    PGP as a form of encryption is commonly available. Theoritically possible but I am not sure how practical it is.

    This way all the webmail programs do not know what is being transmitted/stored.

    How about other applications that can use the 1GB of storage from gmail?

    e.g. online filesystem - files stored as attachments to emails to yourself.

    What else?

  9. Having worked for Google... by IanDanforth · · Score: 5, Interesting

    I can say that I trust them (the founders) pretty much totally. It probably had something to do with the posted signs saying "Don't be evil." All over the place. Its rule number 1. I also use gMail, and while I don't think its as amazing as people have made it out to be, its nice to not worry about inbox limits. If your still concerned about privacy think about this. They have your IP address and every search you've ever run, personally thats more revealing about me than most of my e-mails. Do they log them all in some huge scary database? No. But if you're paranoid enough to worry about bots reading your mail, you should probably think about that potentiality as well. -Ian

  10. Re:biggest problem with gmail: governmental reques by Edward+Scissorhands · · Score: 5, Interesting
    Holy shit, how is this moderated as Insightful? It's totally wrong.
    They're listing situaitons [sic] in which they won't reveal information
    In fact, they are listing the situations under which they will reveal information.
    [W]e do not disclose your personally identifying information to third parties unless we believe we are required to do so by law or have a good faith belief that such access, preservation or disclosure is reasonably necessary to
    (a) satisfy any applicable law, regulation, legal process or governmental request,
    (b) enforce the Gmail Terms of Use, including investigation of potential violations thereof,
    (c) detect, prevent, or otherwise address fraud, security or technical issues (including, without limitation, the filtering of spam),
    (d) respond to user support requests, or
    (e) protect the rights, property or safety of Google, its users and the public.
    Clearly, they will provide personal information to anyone when they believe it is necessary to do either (a), (b), (c), (d), or (e).

    If you look at the very first condition (a), you'll see that they explicitly define a government request as seperate from a "legal process", "law", or "regulation". Clearly, the act of obtaining and presenting a warrant or subpoena falls under the category of "legal process", which is identified as being different from a "government request".

    As well, notice that that Google explicitly says that they will turn over personal information to "third parties". That could mean anyone-- your boss, your teacher, your parents, the RIAA, or even your Rabbi. The simple fact of the matter is that the only way to get privacy in e-mail is to run your own servers and only send and receive encrypted e-mail messages.

    I'm not saying that Google is evil-- though they do admit that they will be more than helpful in providing anyone with your personal information if the request satisfies any of the above conditions which, in my opinion, are overly broad -- but I do think that any organisation that really cared about your privacy would have a simple policy: they would not turn over information unless the request was made through the legal process.
  11. Random thought... by rbright · · Score: 5, Interesting

    Is there any technical reason why you couldn't write some clever code that would allow you to mount GMail as a networked drive, just like Konqueror does with its multi-protocol support?

    Files would be stored as attachments, along with a file allocation table of some sort. Send a mail to yourself to write a file; delete the mail to erase it.. but all totally transparent to you. It'd be a bit slow, but some clever caching/buffering could take care of that.

    You could theoretically get it to span across several accounts to store files larger than a gig. Just add un/pw's to a config file to increase your storage capacity.

    Even if they don't end up providing pop3/smtp, you can still just script the html sessions like YahooPOPs! does.