Slashdot Mirror
Google is Testing Self-Destructing Emails in New Gmail (techcrunch.com)
The upcoming update to Gmail might include a feature which would allow users to send emails that expire after a user-defined period of time. From a report: Working on an email service is hard as you have to be compatible with all sorts of email providers and email clients. But it doesn't seem to be stopping Google as the company is now evolving beyond the simple POP3/IMAP/SMTP protocols. Based on those screenshots, expiring emails work pretty much like expiring emails in ProtonMail. After some time, the email becomes unreadable. In the compose screen, there's a tiny lock icon called "confidential mode." It says that the recipient won't be able to forward email content, copy and paste, download or print the email.
I receive data on my computer. It is then uncrypted and displayed on my screen. Ergo, stored in clear in RAM. What prevents me from finding a way to copy-paste this data?
So easy to take a screenshot. Also, it's ultimately up to the browser whether to enable copy/paste or not.
Because of course you cannot take a screenshot, right?...
Screenshots still exist, and unless they completely block that email from being downloaded via POP3, or IMAP people can still store it locally.
These kinds of "self destructing" messages are a stupid concept anyway.
Anyone trying to implement it has watched too much inspector gadget as a kid.
So wait, in one story summary Google is fighting against the right to be forgotten, and in another they are developing self-deleting emails?
Wha?
"There is more worth loving than we have strength to love." - Brian Jay Stanley
Not long before a bunch of extensions are released to automatically save a copy of all these "self destructive" emails...
Slashdot, fix the reply notifications... You won't get away with it...
Nice I suppose, except that i wont prevent taking a screenshot which you then copy/paste, print, forward, etc....
DRM for emails? Do not want.
My autoforward just broke your autodestruct.
Assholes.
It's Snapchat for email. Snapchat is stupid. This is stupid. *takes screenshot*
Since the emails will still be stored on the NSA servers.
...an improved OCR software on your laptop or mobile phone or so?... ...a fiverr, amazon mechanical turk or a man-in-the-middle-of-a-pron-site attack?!
self-destructing, secured, or even recall-able messages have been the hallmark of feature sets demanded by users without so much as a cursory understanding of email. Since most of human civilization uses GMail im sure the hubris of google rides high in testing this new "feature" but for power users or those outside the domain of the big G, this is feature is as useless as 'do not track.'
mash away at self destruct all you like. Once the message leaves your Google mailserver and enters my Postfix, its mine.
Good people go to bed earlier.
Your mission Dan/Jim, should you choose/decide to accept it, ... As always, should you or any of your Force be caught or killed, the Secretary will disavow any knowledge of your actions. This tape/disc will self-destruct in five/ten seconds. Good luck, Dan/Jim.
So Gmail is starting to catch up with some of the features you can find in desktop clients. Exchange/Outlook has been able to do those things for years. You can also encrypt emails, sign them, add voting options, etc...
As far as self-destructing emails, well it deleted itself before I was able to look at it so I guess I can't do whatever it says. And you've got no proof you asked me to do something. If I can't re-reference something to aid my failing memory then I'll safely assume it doesn't exist. Outlook has retention policies, but those are more for the receivers rather than the sender.
I think they're just doing it because of all the services which now want access to your email account so they can scan everything for their service. If emails start disappearing (from your view, never from Google's scans), then Google's competition can't gain the same data set they have.
"It’s unclear if this feature is going to be compatible with non-Gmail users as the company asks you to confirm your Google account to view the confidential message."
Google is an ad and privacy broker, where you are the product. I maintain various mail servers of small companies (compared to Google), and it's already a battle against the arrogance of big providers like Google, Microsoft and Yahoo, where most the spam comes from, but they also have the tendency the blacklist non-spamming clients for no apparent reason (mostly collateral damage of false positive spam filters) while hiding behind insane, hidden contact forms, which are designed to discourage you and give you the middle finger.
Don't give Google more power, don't use their email service.
I find this rather worrying for the future of e-mail...
In Soviet Washington the swamp drains you.
It is your mailbox, the receiver legally has the right to control their mailbox. That is like saying SPAM can not be deleted. But still Google has the email on their server. This takes the control of your email away from you. Very Microsoftish, knowing what is best for the user.
Is Google going to have to turn over their backed up server data?
"the company is now evolving beyond the simple POP3/IMAP/SMTP protocols."
Translation: "Those leave complete control of the recipients mailboxes in the hands of the recipient. We can't have that."
I would not think that product ideas like this can come out of company where sane engineers have any impact on business decisions.
Any "feature" that thinks in can delete from there is a bug that will get blocked.
Right.
I set that to self destruct, you couldn't possibly have read it!
Blink blink, why make people crazy? You better deal with them once they pass the mark.
To stop supporting XUL extensions as it would be trivial to write an XUL extension to copy and paste the text from an email. Even if they use something like canvas and webgl XUL has wrappers for it. Join the resistance, download an XUL web browser like Waterfox or Basilisk today
Google can't figure out how to get even simple IMAP to work correctly. They have something they call "folders" but it is flaky as heck and sure isn't IMAP.
you can take a picture of the screen with your cell phone. Actually, I'm getting more
and more emails at work where people do that rather than copy/paste.
You obviously cannot possibly implement this on any system that isn't exclusively maintained by Google. e.g. assuming I were even able to install the make-it-stop-working "feature" on my imap server and/or mailreader, what reason would I have to not fix the defect while still remaining compatible with it?
It's nearly inconceivable that it would be compatible with anyone else's email. And I know that gmail is pretty popular, but how popular can it remain, if it's not quite interoperative with the rest of the world's email?
This sounds like some kind of switch to a more AOL/CompuServe-like platform, away from the Internet. How quaint!
And that is just unbelievable, literally. I know we are living in the age of maximum stupidity, but this is even dumber than having Trump as your president.
So, it seems a lot more likely that this will actually have nothing to do with email, and will instead just be some web page, and people will email links to that web page. Or maybe even some funny new uri scheme that is opened by a DRM-compatible application available for a small number of platforms, in order to prevent web browsers from being able to read the content too handily. (Since once the message is in the DOM, I have it and can access it, so it needs to not ever get into a browser in the first place.)
I don't know whether to be disappointed or amused that Google (a company most of us think of as a web company) is doing something so technologically backwards.
It says that the recipient won't be able to forward email content, copy and paste, download or print the email.
BWAHAHAHAHAHAHAHAHAHAH!!!!
holy shit how far has Google fallen!?
I remember when they wouldn't even try to float that one by the general populace because they know that we're going to read it.
God DAMN, has this "post-truth society" thing really infected everyone else?
A boon for spammers, phishers, and scammers.
Being able to set a time the evidence of your crimes expire is mana from heaven for the criminal underclass.
Did anybody read the article? Funny I know. Looks like it will work like our company's secure email used internally for PHI. When I get a secure email I get a link to the secure email system. If you're a gmail user, Google will magically make it load like a regular email. If you're running your own email server or are otherwise outside gmail, all you'll have in your system is the link.
Yes you can work around it with a screenshot or copy/paste. But the act of running your own system will not magically make it be in your system unless you do something manually like that. Maybe some wget shenanigans.
I wonder how doing that will play out with various computer usage laws in place in US or elsewhere. Same for that proton mail I saw mentioned in the article. Sure the data's in your system, but if you're told up front that you're not allowed to store it outside of their system, would that be breaking the law? Or how could it play out during e-discovery if one of these manually saved emails is found after the expiration date? So maybe not only could you be "violating" Google's access policy, but would you also "violate" the Google user who sent the message?
If your April Fools stunt is delayed from some reason, that's not to be taken as releasing it later. These jokes are only funny on the morning of April 1st.
The only reason you might want this is for emails that are only relevant for a short period of time e.g. "Want to go for supper tonight?" and put a cancel-by time of 5:30pm, if you haven't heard back by then you can make other arrangements and your email will be gone so you won't have to worry, sitting at the fast food place putting a way a burger, gettting an email at 5:55pm saying "I'd be delighted! Pick me up at 6:30?". You can think of your own other scenarios for limited-time-relevancy emails that you don't want a whole thread about after-the-fact.
When the copyright term is "forever minus a day", live every day like it's the last.
I have absolutely no more interest in being sent e-mail that I can't copy and archive than I do paper mail that self destructs.
If you don't want information leaving your server keep it there and have the person who you want to have access it access it via console overtop a VPN.
This is not e-mail and if Gmail implements this I should hope they have filter all of this type button to go with it. Or I may have to look for a different e-mail client.
I.e. the flag the NSA will look for first when sorting it's data. It might as well say: "Dear TLAs, Please read me and store me for all time" mode.
When you have found a way to stop me making a screenshot (how..?)
How will you stop me from photographing the screen?
The ability to harass someone, and then have the evidence self destroy itself.
I have major issues with someone else having the power to remove a message from my Inbox, I don't care if they sent it -- once it hits my inbox I should have ultimate control. I also can't wait to see when people start using this for nefarious reasons like death threats. Good job Google! I also hope it never conflicts with regulations or policies that require all emails to be captured and stored for a certain amount of time.
Perfect for sending threatening emails to the less technically literate - even if they take a screenshot... who will believe a screenshot of an email?
My ass. This is Goggle after all. Confidential except for advertisers, law enforcement, or intelligence agencies.
putting the 'B' in LGBTQ+
Why not ?
raid level 4-6 makes inexpensive redundancy.
Why would google not use a similar scheme to make an "online backup" without the expensive double storage need of conventional backup ?
aaaaaaa
Will it come with the (tv version) Mission: Impossible guy saying this tape will self destruct in 5 seconds...Good luck Jim!
So only Google gets to keep a copy? Once on the net, always on the net.
OK Google, t(-_-t)
It says that the recipient won't be able to forward email content, copy and paste, download or print the email.
Obviously impossible, unless the recipient also cannot read the email.
"In fact, the only place it won't be destroyed is in our databases we give access to government! You have nothing to hide, repeal the 4th now!"
(-1: Post disagrees with my already-settled worldview) is not a valid mod option.
This has quite a few uses outside of top-secret mission impossible stuff.
This could be used for sales, appointments, deadlines and such.
And equally instead of just delete, you could have auto-archive after a time, so someone keeps record of things.
Burn-after-reading feature would be handy for one-time keys to login to websites, change passwords, etc.
I would rather see it merged with the e-mail specs than it be some proprietary hacky system.
It would make e-mail so much more useful and less of a fucking headache to manage if you deal with loads of temporary-use e-mails or things that become invalid after a time.
Removes a stupid amount of mental overhead in keeping track of these things. Also saves space.
It would be nice to have an optional expiration date on emails. For instance, sale emails I receive could have an expiration date set by the sender, and as the recipient I could default to accepting these, ignoring these and if I accept them I could optionally override on a per email basis.
Then the client or server could intentionally obliterate emails that I don't care about.
Google also testing rotor blades that come out of a hat and large springs that come out of your shoes.
You all think you're so smart saying "Lol, I can copy/paste or screenshot it!". That's not the point, dummies! Say you want to send someone some info you don't want hanging around in their inbox. They get it, use the info to access...whatever...and then you get assured that they don't just hoard that email. If a user's email is compromised, it's just a house of cards as they can easily skim through and see all the services you're signed up for and reset passwords to those, including banking, credit cards, etc. It's advised to keep your inbox clean to prevent stuff like this from happening, at least now companies that send out the emails will have some control over this.
This is great news for all the spammers of the world!
I will just ask the NSA/CIA/FBI for a copy.
How come reports don't include info that other mail systems already include this capability?
This will enable my new ransomware extortion ring to be far more productive with a lot less work. Is it my fault that the victim can't forward or print our ransomware email for the authorities to even investigate?
1) Send extortion email with a No-Print attribute, and a one hour time delay for payment after first opening it.
2) Wait for payment using the supplied untraceable html link in the email.
3) Profit!
Of course who would ever think to do such a thing?
> It says that the recipient won't be able to forward email content, copy and paste, download or print the email. maybe your grandma wont be able to. rofl.
Wtf Google. You used to be a company of engineers.
A government is a body of people notably ungoverned - AC
but it's not documented. Try to send an Usenet-style Expires: header in the past to someone who uses Outlook / Microsoft Exchange, and see what happens.
Yep. No matter what they do, there's always screen-capture, and if not at some point in the future with the OS (Windows and OSX and Linux can all do this at present), then with a camera; your phone or a DSLR or an HD video camera, etc.
If it's ever readable, it's readable forever if anyone who can read it wants it to be. End of story.
I've fallen off your lawn, and I can't get up.
We have seen this before - Microsoft called it "Embrace and exrend".
Actually, I am having trouble forming an opinion on this feature:
I've never considered moving off of Gmail as seriously as when I heard about this new idiotic anti-feature.
"When information is power, privacy is freedom" - Jah-Wren Ryel
I misread the title at first glance. Some Freudian node in my addled old brain saw it as Google testing self-destructing Gmail.
If Gmail were to suddenly vanish, I would have to re-think my atheism.
Scruting the inscrutable for over 50 years.
As the title says. Just go with another provider.
Comment removed based on user account deletion
How will this work with google vault and other email retention programs? If I am required to maintain copies of all emails received and sent, how can retention work?
After a few years of lacklustre adoption Google will shut it down.