Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Google Desktop Search
From: Rodrigo Barbosa <rodrigob () suespammers org>
Date: Fri, 15 Oct 2004 13:36:59 -0300

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I hope you opted IN,

after all, you are being given a nice piece of free (as in beer) software,
with great potential to be a very useful tool. The least you can do is
to provide them with some statistical data so they can improve it.

I know, the green eyed privacy ghost. Everyone is evil until proven otherwise.

Security does demand some healthy degree of paranoia, but lets keep it
on the healthy side of the scale please.

If you are worried, DON'T download and INSTALL it. If you do, please,
at least try to contribute.

Best regards,

On Fri, Oct 15, 2004 at 03:07:19PM +0000, DAN MORRILL wrote:
I hope you opted out,

Consent to Collect Non-Personal Information
Google Desktop Search may collect certain non-personally identifiable 
information that resides on your computer, including, without limitation, 
the number of searches you do and the time it takes to see your results. 
Unless you choose to opt out, either during installation or at any time 
after installation, non-personal information collected will be sent to 
Google. This information will be used by Google only for purposes of 
operating and improving future versions of Google Desktop Search and will 
not be disclosed to any third party or used for any purpose other than as 
described in this agreement. To learn more, please read the Privacy Policy 
located at

Ref provided by http://desktop.google.com/eula.html, makes for an 
interesting read.
r.
Dan

From: Dogo <nikopol59 () yahoo com>
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] Google Desktop Search
Date: Fri, 15 Oct 2004 05:42:26 -0700 (PDT)

Hi everybody!

I decided to test Google Desktop Search yesterday, 10-14-04. It's supposed 
to seach almost any
kind of information "inside my hard-drive". In the beginning I put my nick 
to play with, Dogo. The
research came with a bit more than I expected 'cause the engine  went to 
some webmail based
accounts: Yahoo and MSN. I could click in the results and opened my Yahoo 
Mail inbox page without
a password. Maybe some password lost in my HD? Maybe some page cached? I 
really don't know yet but
didn't like to see my mail exposed this way.
Well, I just used for maybe 20 minutes until the index was being prepared. 
I uninstalled the tool.

Did someone try it? Any opinion?

Cheers!



_______________________________
Do you Yahoo!?
Declare Yourself - Register online to vote today!
http://vote.yahoo.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

- -- 
Rodrigo Barbosa <rodrigob () suespammers org>
"Quid quid Latine dictum sit, altum viditur"
"Be excellent to each other ..." - Bill & Ted (Wyld Stallyns)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFBb/yrpdyWzQ5b5ckRAk3fAJ9jpQLJNEKFSNVAu3I33Z2qmrC/mwCfb2+Y
JVsXtThOXL0JrZOK0qebKFo=
=Q6PE
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault