Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Tweaks Buzz To Tackle Privacy Concerns

Posted by timothy on from the who's-zooming-who dept.

CWmike writes "Just two days after launching its Buzz social networking tools, Google said Thursday night that it had tweaked the technology to address early privacy concerns. Google said in a blog post that the quick updates makes it easier for users to block access to their pages and eases the path to finding two privacy features. 'We've had plenty of feature requests, and some direct feedback,' wrote Todd Jackson, a product manager for Gmail and Google Buzz, in the blog post. 'In particular there's been concern from some people who thought their contacts were being made public without their knowledge (in particular the lists of people they follow, and the people following them). In addition, others felt they had too little control over who could follow them and were upset that they lacked the ability to block people who didn't yet have public profiles from following them.'"

47 of 153 comments (clear)

  1. The real story by alain94040 · · Score: 5, Interesting

    This blog shows what really happened:

    I use my private Gmail account to email my boyfriend and my mother.
    There’s a BIG drop-off between them and my other “most frequent” contacts.
    You know who my third most frequent contact is?
    My abusive ex-husband.
    Which is why it’s SO EXCITING, Google, that you AUTOMATICALLY allowed all my most frequent contacts access to my Reader, including all the comments I’ve made on Reader items, usually shared with my boyfriend, who I had NO REASON to hide my current location or workplace from, and never did.

    It shows more eloquently than any privacy advocate ever could why privacy is so important when "you don't have anything to hide."

    --
    find a co-founder

    1. Re:The real story by mhwombat · · Score: 3, Insightful

      Maybe she should have to explicitly add her abusive ex-husband to her list of contacts before anything is made visible to him. I hate opt-out stuff. Give me a list of "possible contacts", sorted by likelihood, blocked by default, and let me unblock them. Don't start them off unblocked!

    2. Re:The real story by QuantumG · · Score: 5, Insightful

      Well, the fact is that this person, who is clearly non-technical, was misinterpreting what she was seeing. This is the fault of the engineers for writing a crappy UI (it's called "consensus presentation" in UI class guys) but no actual harm was done. None of her private Reader posts were delivered to her abusive ex-husband or the stalkers who email her - it just looked that way because she assumed that if its in her buzz feed then it's in theirs, cause that's the way it works on Twitter/Facebook. Actually, that's not precisely true, she also confused 'follower' and 'following' in a way that makes no sense for those other two services too.

      --
      How we know is more important than what we know.
    3. Re:The real story by beadfulthings · · Score: 3, Interesting

      You don't even have to have an abusive ex-husband. I found I had acquired a follower with the unlikely name of "Kleetman Nissanka." Our buddy Kleetman seems to have assembled a collection of people to follow--all of whom are women, and all of whom have the same first name as mine. He may have found my public profile (which lists two websites, both business-related), but I certainly didn't give him permission to follow me. I have now cleansed Kleetman from my profile and re-disabled Buzz. I guess people at Google don't have to worry about stalkers, spammers, and other assorted gentry.

      --
      "Here's what's happening. You're starting to drive like your Dad..." - Red Green
    4. Re:The real story by DragonWriter · · Score: 4, Insightful

      It shows more eloquently than any privacy advocate ever could why privacy is so important when "you don't have anything to hide."

      No, it doesn't. Because it specifically deals with a case where someone does have something to hide. (Also, it doesn't make sense, since, even with the way Buzz was set up before these change, had to be manually added and prominently displayed its sharing settings. And, further, it seems to be based on faulty assumptions about what the meaning of someone being a "follower" are and what they could see, anyhow.)

    5. Re:The real story by Trepidity · · Score: 4, Interesting

      If she enabled Buzz, I don't see it as necessarily the case that she's misinterpreting it. When I enabled Buzz, instantly I was following 8 people, and 7 of those people were following me back, based on the fact that we'd email a bunch. As I read it, that's what she thinks happened--- that Google had her ex-husband auto-follow her, because they'd exchanged emails. Unlike Facebook, you don't have to approve followers, either. And, your Google Reader comments are by default visible to your followers, something I also didn't realize until one of those 7 followers of mine commented on a post of mine.

      Now in my case those 7 auto-followers are people I actually know and don't object to following me, and I had nothing particularly private in my Google Reader comments, but it was still quite surprising and felt a bit weird that it was all done automatically. I would've felt much more comfortable if Google used email history to suggest contacts, but I still had to approve people individually before they could get access to my stuff. It'd also be nice if it asked me explicitly if I wanted my Google Reader comments shared over Buzz.

      --
      10 PRINT CHR$(205.5+RND(1)); : GOTO 10
    6. Re:The real story by QuantumG · · Score: 2, Interesting

      Uhhh.. no you didn't. What you did was misconstrue what I was saying..

      Twitter, and Buzz, (and I guess Facebook, I don't use it so I don't really know) are RSS feeds for the masses.

      They aggregate "updates" together and show you a feed. My feed looks different to your feed, that's the point of it. In order to facilitate conversation the outgoing feed and the incoming feed are aggregated into a single feed. So when I say "hey folks, just signed up to Buzz", it appears in my feed, even though I'm not following myself. That way when someone says "hey, me too!" 15 minutes later I don't have to remember what I said 15 minutes ago.. it looks like upside-down chat.

      One of the nifty features of Buzz (and I expect Twitter to copy it soon if it hasn't already) is that you can subscribe to a blog through it.. then whenever someone posts something on their blog you get an update and can go check it out. Unfortunately, this feature was not adequately explained, so when little-miss-freaks-out-alot here decided to tick the "add my reader to my feed" button she assumed she had just broadcast its contents to everyone. That is, she confused the outgoing feed with the incoming feed.

      The Google engineers have failed to indicate clearly the origin and destination of updates in the aggregated feed.

      Simply put, they shoved in a feature that they thought was neat but didn't consider its UI impact.

      --
      How we know is more important than what we know.
    7. Re:The real story by Garble+Snarky · · Score: 3, Insightful

      How about, she shouldn't be posting her home or work address on the internet? I understand that doesn't entirely solve the problem (maybe she works at a well known local company with only one location, etc), but people need to learn that when you put your information on the internet, it is no longer private. I would hope that personal email accounts continue to be private, but honestly, you are handing your information over to other people, you can't make assumptions about what they'll do with it.

    8. Re:The real story by ThePhilips · · Score: 4, Insightful

      Twitter is used for public communication.

      E-mail, Gmail is front-end of, is used for private communication.

      Why the difference is so hard to understand??

      --
      All hope abandon ye who enter here.
    9. Re:The real story by Anonymous Coward · · Score: 2, Interesting

      There is another aspect to the lack of privacy that is slightly more subtle than people seeing someone's contacts on their own profile page.

      Even if you have no public profile and have Buzz "turned off", people you follow / are followed by can still see your following status on others' profiles if you have a follow / followed relationship with that person as well.

      Example: Person A has no public profile, and has Buzz "turned off." Person A follows / is followed by Persons B and C because of the [ridiculous] Buzz defaults or choices on behalf of B and C. Despite A's attempts to preserve their privacy, if B looks at C's public profile, B is alerted to the relationship between A and C.

      This is not quite as bad as all the info being displayed to the world in one place, but still warrants concern in the same type of examples that are being brought up by so many people. If an (abusive husband / employer / nosy neighbor) suspects their (wife / employee / neighbor) is (seeking help / negotiating a job offer / whatever) from a particular person, it's still possible that Google will leak that sensitive information to the other party.

      As far as I can tell, there is no way to set up Buzz so that no one is able to follow you. So even if you stop following everyone and block everyone that's currently following you (at the risk of seeming rude and offending acquaintances), new people could still decide to follow you. Of course, if you have Buzz "turned off," you have no way of knowing that it has even happened. And if you do have Buzz on, it will require constant attention to immediately reject anyone that tries.

      There should definitely be a way to opt out of the Buzz system and database completely and permanently. It is not right that one has to reject and block followers individually if they want to opt out of the service. The root of the problem, of course, is that the service should be opt-in from the beginning, with Gmail users out of the system by default and able to fully remove themselves after opting in.

      Personally, I'm considering moving my email away from Gmail as a result of this whole incident, and I've read Google's "Gmail > Buzz and Contacts" help forum enough to know that I'm far from the only one.

    10. Re:The real story by FuckingNickName · · Score: 2, Interesting

      Those who have marked this down as flamebait probably missed that this was quoting the opinion on privacy of Eric Schmidt, CEO/Chairman of Google Inc.:

      "If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place"

    11. Re:The real story by beadfulthings · · Score: 2, Informative

      Both of you are missing the point. Both Twitter and Facebook can be set up to confront you directly and say something along the lines of, "Kleetman is now following you/wants to be your friend. OK with you? (yep/nope)" That provides the opportunity to opt out (as it were) and the opportunity to do a bit of trivial checking-up if desired. The perception of being followed by a mysterious individual who roams the Intertubes assembling lists of women named "Anne" is just plain distasteful.

      --
      "Here's what's happening. You're starting to drive like your Dad..." - Red Green
    12. Re:The real story by McDutchie · · Score: 2, Insightful

      It shows more eloquently than any privacy advocate ever could why privacy is so important when "you don't have anything to hide."

      No, it doesn't. Because it specifically deals with a case where someone does have something to hide.

      Parent comment is disingenuous. When people say "I don't have anything to hide", they mean that if you don't do anything wrong you have no need for privacy, because you would only want to hide things that are illegal or otherwise wrong. Grandparent comment is exactly correct in pointing out the error of this all-too-common reasoning.

    13. Re:The real story by Colz+Grigor · · Score: 2, Informative

      Well thanks, at the very least, for linking to the video of the quote, so people have a chance to see that you (and the parent) have used it entirely out of context.

      Here's the full quote:
      Interviewer: "People are treating Google like their most trusted friend. Should they be?"
      Eric Schmidt: "Well, I think judgment matters. If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place. But if you really need that kind of privacy, the reality is that search engines including Google do retain this information for some time, and it's important, for example, that we are all subject in the United States to the Patriot Act. It is possible that that information could be made available to the authorities."

      While the quote _is_ Eric Schmidt's opinion of privacy, specifically it's his opinion of how much privacy one should expect from a search engine in light of the Patriot Act.

      Do you think any differently than Eric Schmidt does?

    14. Re:The real story by tftp · · Score: 2, Insightful

      I think you fail in comprehending the meaning of the word "public".

      There is a world of difference between:

      a) the public profile - a static Web page that shows text that you personally put there (or allowed to be put there.)

      b) the privilege of seeing contacts and comments made by that person, now and forever.

      For example, all I know about daveime from your public profile on /. is what comments you made here. Imagine if suddenly I get access to your email contacts and, through search or social engineering find out who you really are? You have your real email hidden for a perfectly good reason.

    15. Re:The real story by Colz+Grigor · · Score: 2, Insightful

      Bah. Google's launch of Buzz broke nothing. It was your choice to try Buzz. When entering Gmail and given a choice, you clicked the "opt-in" button instead of the "opt-out" button. Followers weren't added until after you clicked the button. Did you read all the available, Google-provided information about what would happen when you opted in, or did you just say, "Oh neat! A new toy!"

      You could have continued to use Gmail just as you were, with no changes and no Buzz.

      Take some responsibility for your own actions and lack of investigation.

  2. Tutorial about privacy before activating Buzz by cytoman · · Score: 2, Insightful
    A brief tutorial about privacy settings and how to do it before letting one activate Buzz would have worked well to stifle such privacy outcries. When I looked into Buzz, all the privacy controls were right there - nothing would be shared if I didn't want it to, and only what I wanted would be shared with only who I wanted to share it with. Very good and tight controls.

    But people are not generally patient enough to pay attention to such details when setting their google profiles and they are the ones who raise a big cry about privacy not being respected.

    1. Re:Tutorial about privacy before activating Buzz by Anonymous Coward · · Score: 2, Informative

      except the biggest flaw is that you can't NOT activate buzz. that little "nah, take me to my inbox" link does all the buzz setup behind the scenes and activates your feed regardless. nor can you opt-out after the fact.

    2. Re:Tutorial about privacy before activating Buzz by cytoman · · Score: 4, Insightful
      Maybe I was not clear when I wrote it...I'm saying that there should have been an "activate Buzz" step. I know that there isn't.

      You can opt out by choosing the "turn off Buzz" link at the bottom of your Gmail page.

    3. Re:Tutorial about privacy before activating Buzz by oh_bugger · · Score: 5, Informative

      The "turn off Buzz" link doesn't actually clean everything up and make things private again. It's misleading.

      --
      Go home and shave your giant head of smell with your bad self
    4. Re:Tutorial about privacy before activating Buzz by BikeHelmet · · Score: 2, Interesting

      Good advice in that cnet article.

      I went to http://www.google.com/profiles to look up my profile.

      No search box, so I clicked on the first example name.

      And then I read her last buzz. :P

      Buzz things turn up as a message in your inbox?! Disabling now. Heart attack.

  3. Buzz saw by joelsanda · · Score: 5, Funny

    Best option for Google user privacy can be found here: http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=32046

    --
    The Luddites were ahead of their time.
  4. People don't read. by MBoffin · · Score: 2, Insightful

    I guess this whole privacy snafu wasn't a big deal to me because I actually read their instructions.

    No, the information about which settings do what weren't in 72pt type, but it's not like they were unintelligible or not there, or not presented to the user right away. But since I actually read the instructions they gave and read the dialog boxes that came up, I didn't lose any privacy I didn't want to lose (or hadn't already given up through other channels).

    People just don't read. Ask any program designer. You know why so many programs have terrible help menus and help files? Because writing them is a thankless job. A fraction of a percent will actually look at the information you give them about how your program works and how to make it do what you want. If they do somehow get around to looking at the information you provide, they don't read it; they skim it for keywords and then barely read enough to try something else.

    So, yes, Google could have made it more clear what was happening when you set up Buzz, but it's not like they yanked your pants down when you weren't looking.

    1. Re:People don't read. by MBoffin · · Score: 2, Insightful

      Read the "fuck you google" blog post. If you said *no* to buzz, it could get set up in a harmful way, which you couldn't configure or change because you had it disabled.

      It still comes down to reading instructions. Even if it means reading instructions in other programs too. I meant it when I said "or hadn't already given up through other channels". Buzz doesn't magically make visible anything that you didn't already have visible. If you had your Reader shared items set to private, they stay that way, but if you had them set to public, well, they're public.

    2. Re:People don't read. by QuantumG · · Score: 3, Informative

      Ok, no worries, let me explain it to you.

      First of all, find one of these people who you think is following you and click on their profile. For example:

      http://www.google.com/profiles/william.pomerantz#buzz

      Now click on the link that says "William is following 67" or whatever, and look for you name. If you don't see your name, then there's no problem.. but if you do and you don't want that, here's how to fix it:

      1. Go to YOUR profile. It will most likely be like Will's, in that it is your name after /profiles/ .. and it would only be like this if you *gave* Buzz you name and clicked the box that says "Display my full name so I can be found in search", and if you said you wanted a nice custom url, otherwise it'll just be some arbitrary number.
      2. Uncheck the box that says "Display my full name so I can be found in search"..
      3. Remove your full name from the boxes if you want.

      Now you can go back to the page of the person who is following you... and select "William is following 67" again, and you will discover that you are now listed in the "other people who do not have public profiles" section.

      If you want you can also do:

      4. click the link that says "Block" after "[Whoever] is following you".

      But you don't need to, because your name is no longer public.... of course, I have no idea how you would have gotten a public profile without asking for one... it took me about 3 attempts to figure out how to get one..

      --
      How we know is more important than what we know.
    3. Re:People don't read. by BikeHelmet · · Score: 2, Interesting

      I never got a page instructing me on anything.

      Is it something to do with using Gmail Notifier to log in?

      I clicked, my mail popped up, and there was this dang coloured round thing on the left, and when I clicked on it it told me I was following a bunch of people and some other crap. I just finished unfollowing and deleting. I don't need all that spam. I'm not even interested in any of the people it auto-followed...

  5. The problem with Google by CuteSteveJobs · · Score: 3, Interesting

    It's that they just don't get Privacy. Yes, we love Google search, GMail and that Beta stuff they do. But they just don't get privacy. To quote Google Executive Eric Schmidt: "If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place."

    The trouble is, as the very first post described, we all do things in everyday life we don't want the world to know. Things we're perfectly entitled to do. But Google don't get it. I haven't used Google Docs because I'm scared there's some setting somewhere I won't know to turn off which will expose my documents to the world. Same concerns with GMail. Yahoo might hand your details over to the Chinese Government, but at least you don't need to worry about them telling *everyone* you've ever e-mailed! If a company ever did that, of course it would be Google.

    Google is the sort of company that would break into your house and stick a webcam in your toilet "So you can socialize with your friends when you're sitting on the can." And they would be shocked when the people who find out about it object to it. The public is still largely ignorant about privacy, but with incidents like this slowly they will wake up. Google really needs to hire some serious Privacy experts to counterbalance people like Schmidt who can only see the dollars and not the bigger picture. Right now the best way for an upstart to beat Google is to offer everything they do but with the Privacy settings on max.

    1. Re:The problem with Google by DragonWriter · · Score: 2, Interesting

      The trouble is, as the very first post described, we all do things in everyday life we don't want the world to know.

      That's not the problem.

      The problem is that some people think that doing these things via media that are expressly public and searchable is somehow "private", and get really riled up whenever someone makes it more convenient for the people who are intentionally posting things via such media to connect it with the people who would be interested (and, conversely, to find the publicly posted things they themselves are interested in.)

    2. Re:The problem with Google by Eighty7 · · Score: 2, Insightful

      Just because it's public doesn't mean it's ok to broadcast it. This blog gives a good example: If you're having an argument with your mate in public, you'd stop very fast if tv cameras show up. Privacy is really about intent & control than about the public/private distinction, which only approximates intent.

    3. Re:The problem with Google by Eighty7 · · Score: 2, Interesting
      more:

      Privacy isn't a technological binary that you turn off and on. Privacy is about having control of a situation. It's about controlling what information flows where and adjusting measures of trust when things flow in unexpected ways. It's about creating certainty so that we can act appropriately. People still care about privacy because they care about control. Sure, many teens repeatedly tell me "public by default, private when necessary" but this doesn't suggest that privacy is declining; it suggests that publicity has value and, more importantly, that folks are very conscious about when something is private and want it to remain so. When the default is private, you have to think about making something public. When the default is public, you become very aware of privacy. And thus, I would suspect, people are more conscious of privacy now than ever. Because not everyone wants to share everything to everyone else all the time.

      http://www.zephoria.org/thoughts/archives/2010/01/16/facebooks_move.html

  6. Admit it, this is exemplary customer service. by mano.m · · Score: 5, Insightful

    They released a product. They got feedback from the people who use it. They acted swiftly and concretely, fixing the product by listening to the feedback and making the user experience more relevant and comfortable. I for one wouldn't mind more companies doing the same, and not just in software.

    --
    Karma fed to this user will be promptly burnt. Be warned; be wary.
    1. Re:Admit it, this is exemplary customer service. by broken_chaos · · Score: 3, Informative

      They got feedback from the people who use it.

      They also got feedback from the people who didn't want to use it, but weren't given the option to properly opt-out, if I'm reading some of the comments/links correctly...

    2. Re:Admit it, this is exemplary customer service. by nawitus · · Score: 4, Informative

      No, they forced a product to people who never wanted it. Then they made it *by default* to leak out private details. Then they made the "turn off buzz" option not really working.

    3. Re:Admit it, this is exemplary customer service. by Anubis+IV · · Score: 3, Insightful

      Imagine if I was a friend of yours and I walked into your home, saw a priceless antique, and figured I'd move it into another room without consulting you or ensuring that it would arrive safely. Along the way, it breaks because I didn't take proper precautions. I then rush to superglue it back together while you ask me what just happened. I may be taking the appropriate action after the fact, but the initial action was wrong and cannot be undone because something was fundamentally lost in the process.

      They betrayed a trust that millions of people had in them by divulging private information that they were privy to. Shame on them, I say, and this is coming from someone who is normally a Google lover and early adopter of their technologies. This whole thing just left a sour taste in my mouth. There is no defense for what they did.

  7. Google is orthogonal to privacy by flyingfsck · · Score: 4, Insightful

    Google, the company that bought Double Click. Privacy is against their business model. Nuf sed.

    --
    Excuse me, but please get off my Pennisetum Clandestinum, eh!
  8. Re:NO MORE!! by eparker05 · · Score: 3, Interesting

    I think it's a little early to draw conclusions on this. People were fairly skeptical about Android when it was new, and now look at it.

    I'm not rooting for it overtly, but I'd like to see more integration in our products. Face book's messaging system is so redundant. Perhaps it's time that we have email duplicate social rather than social duplicate email.

  9. opt-out paradigm by underwhelm · · Score: 4, Interesting

    First, I'm amazed that Google would stumble out of the blocks like this. Isn't this the same company that keeps things in "beta" and "labs" for years and years? Had this "feature" been available for the general public to play with for a month or three before bringing out the "big guns"--opt-out implementation for all gmail users--these shortcomings would have been caught and remedied before they were inflicted on unsuspecting non-power-users.

    Second, I can certainly appreciate the difficulty of creating the spark of life in a new social network platform. Ordinary players in the market have to hope that lightning strikes. As Google already has learned with Orkut, if lightning doesn't strike, maybe your product can find a niche somewhere in the long tail. Or it will never come to life at all. With Buzz, Google decided they didn't want to risk a sunny day, and chose instead to play with the high voltage line. Insta-social network by compelling everyone to connect with their personal email addresses. Deservedly, they're now getting burned--Gmail was many people's default "real" personal email site. Compelling a connection between people's real personal email address to a social network (on an opt-out basis) might shake people free of that preference...

    --

    I don't need large brains to have a good time.

    1. Re:opt-out paradigm by HigH5 · · Score: 3, Interesting

      It seems that Google is in some kind of a hurry and tries to catch-up with Twitter and Facebook using Gmail (quite aggressively) as a leverage. It seems that they didn't ponder a lot about social consequences of their move.

      --
      Ceterum censeo Microsoft esse delendam.
  10. Google adopts new "Do, however, be stupid" policy by David+Gerard · · Score: 3, Funny

    In the wake of massive Buzz privacy problems, Google has announced that its slogan "Don't Be Evil" will be extended for the 2010s with "But Do Be Stupid."

    "I don't see how people could ever have thought it wasn't perfect," said Google marketing marketer Todd Jackson. "We tested it in-house for ages, and our test group of white male engineers all working inside a single corporation thought it was the best thing ever! So of course we didn't see the need for any user testing or opt-in."

    Gmail users have been up in arms at their frequent email contacts and private addresses that forward to Gmail being publicly revealed, their precise GPS location being automatically posted with updates from their mobile phone and that switching off Buzz doesn't actually switch it off.

    "We have heard of the case of the woman whose violent stalker could track her through the Buzz function she didn't actually switch on," said Bishop. "But should she actually be killed, we will of course apologise for her poor product experience. Though it's obvious it's her own fault for not having first found the function hidden behind three panels to untick 'KEEP MY STALKER UPDATED ON MY EVERY MOVE.' Some people just shouldn't be let near computers."

    Jackson emphasised the non-evil nature of Google. "We are most definitely not evil. But if, y'know, evil just sorta happens, well. We just send the rockets up. It's not our job to think about where they land."

    --
    http://rocknerd.co.uk
  11. Another SNAFU that they haven't fixed yet by Daetrin · · Score: 4, Interesting

    At least it hadn't been fixed when i tested it a couple hours ago. If you go to the profile settings there is an option called "Display my full name so I can be found in search." If you uncheck that box and save it your profile will now say "visible to the public as [whatever your nickname is]." YOu'll also get a warning about how your profile won't be searchable as long as that option is disabled, which is exactly what one would expect from the description.

    However if you then try to do something with Buzz ("Like" a post or leave a comment) a browser-internal dialog will pop up asking "How do you want to appear to others?" It's a pretty small dialog with the only thing you can really select being if you want who you follow to be public or not, so clearly this is part of their solution to the complaints about privacy. However if you select "save profile and continue" you will then find that the "Display my full name" checkbox has been turned back on, without any notification at all! And of course if you uncheck it again, the next time you try to do anything with Buzz you'll have to go through the dialog again. There is an "edit" button on the dialog which opens up more options, but even under there there's no option to leave the "display full name" option unchecked. (Although it was hard to determine that since the dialog that pops up is taller than my browser window, so i had to maximize the window just to be able to see it all.)

    Note that you are never told "you must make your full name public in order to use Buzz" and the option itself says nothing about Buzz, just that your profile won't be searchable. It's not clear if that's the behaviour Google wanted (which would be stupid) and they're just not telling us about it (which would also be stupid) or if they just screwed up the dialog and settings in their rush to address the privacy concerns.

    --
    This Space Intentionally Left Blank
  12. Re:When you can stare down China... by rarel · · Score: 2, Interesting

    I disagree. "Being evil" does denote intent in my opinion. They're just being irresponsible and careless with their power, which is just as reprehensible if not more, because they don't realize it.

  13. Wow, you're a careful dude by Mathinker · · Score: 4, Informative

    > you are handing your information over to other people, you can't make assumptions
    > about what they'll do with it.

    This is not making assumptions, rather, it is assigning a risk factor, which is something all of us, including you, do 24/7 (well, at least during all sober waking hours), in order to survive. You do it whenever you drive (never "assume" that the car coming from the other direction isn't going to swerve into your lane?), whenever you deposit money in the bank (or you never "assume" that the bank won't make some mistake, or that your identity won't get stolen, and your money will disappear?), etc.

    Your post seems to me to be based on a fallacy which I cannot name, which I will call "reality is binary". This fallacy is common in the security realm, where, for example, people see that a one-time pad is the only absolutely secure encryption and believe it is superior to AES, when the reality is that it never pays to make something absolutely secure, it only pays to make everything secure enough that it isn't worthwhile to make it more secure (and, of course, there is nothing which is absolutely secure, even using a one-time pad, because security also isn't binary).

    To avoid this fallacy, you should have said "when you put your information on the internet, it is less private", but of course, that doesn't have the authoritative ring and doesn't look as good in bold letters. Effectively, your post should have dealt with the relative advantages to the woman for using Google Reader to communicate in a semi-private way vs. the probability that something would change and the information would become less private (as it did) and the damages that would cause.

  14. Comment removed by account_deleted · · Score: 3, Interesting

    Comment removed based on user account deletion

  15. Comment removed by account_deleted · · Score: 2, Interesting

    Comment removed based on user account deletion

  16. What about POP and IMAP users? by cenc · · Score: 3, Interesting

    I wonder how many people that do not use the web interface, but have gmail accounts, will not even know they are exposed.

    Going back to using only my own email servers because who knows what stupid thing they are going to dump on the web next.

    --
    Living in Chile
  17. DID they fix the problem? by argent · · Score: 2, Interesting

    Here's the problems, so far as I can tell from the back-and-forth:

    1. Google Buzz is opt-out.
    2. Google Buzz treats gmail contacts as "friends".
    3. Google Buzz exposes "friends" in your profile. This is also opt-out.

    This means that people who have never interacted with Buzz at all *already* have had their privacy exposed. And people who *have* interacted with buzz may not know about the problem.

    How do you fix this? Well, you can't "unsee" things on the Internet, so they can't undo any compromises that have happened as a result of this exposure, but they could block everyone's friends lists and make everyone opt in again. Have they done that? I still see Buzz showing up in my list of filters, and the option to display friends is still opt-out. Making it more obvious IF YOU GO LOOKING FOR IT doesn't change the fact that it's on by default.

  18. I read it, understood it.... by SilverJets · · Score: 2, Interesting

    And it still did something that completely stunned me.

    I didn't want buzz. I don't like Facebook, Myspace, or Twitter. I just want a damn e-mail account that just sends e-mail. So when it popped up and asked if I wanted to use Buzz, I clicked No.
    Small point here that is important later...I have never created nor set up a Google Profile.

    So, a friend whom I e-mail quite regularly buzzed a few things. I was automatically set up to follow him. Why? I said, "I don't want Buzz, take me to my inbox."

    Then a few friends of his, who I know of but I have never exchanged e-mails with, replied to his buzz. *This becomes "interesting" in a second. *

    So today, I read through Slashdot and find a link explaining how to truly turn off buzz. One step is to look at your profile. I don't have a profile I says to myself. So I go to the Google profile page and log in, not Create a Profile, but log in. Oh look, a skeleton profile, with a big blue Create Profile button at the bottom. I click the "Contacts" tab at the top and there are a bunch of contacts that are not mine. People I have never e-mailed, at all. I look at the names and recognize them as friends of my friend. I may have received some e-mails in the past with them in the Cc field, but I never e-mailed these people. And here they are as part of my contacts all because they replied to my friend's Buzz.

    WTF? Why do I then have to explicitly remove them as contacts? I never explicitly added them, Google made that decision without asking me. It was a shitty implementation and a complete failure at security and privacy.