[00:05] <pillarist> what are ubuntuone's plans, if any, for file encryption?
=== ink_away is now known as CrazyShaman
=== CrazyShaman is now known as ink_away
[15:15] <leak> hi.
[15:17] <leak> any dev here?
[15:23] <dobey> hey gafton
[15:23] <dobey> i guess ATL wasn't stormy :)
[15:23] <dobey> hi leak
[15:23] <leak> hello dobey
[15:23] <leak> are you a dev?
[15:23] <dobey> yes
[15:23] <leak> could you please tell me the current gnome dependencies
[15:23] <gafton> dobey: ATL was plenty stormy, but the pilot was dead-set on landing that plane at all costs, it seems ;-)
[15:23] <dobey> but you should just ask your question
[15:24] <dobey> gafton: and taking off i guess :)
[15:24] <dobey> leak: python-gnomekeyring and libnautilus-extension are the 2 big ones
[15:25] <leak> you see my distro doesnt not have gnome
[15:25] <dobey> leak: they depend on various other pieces
[15:25] <leak> or avoids its dep extremely
[15:25] <dobey> what distro? slackware?
[15:25] <leak> is there a source available
[15:25] <leak> no
[15:25] <leak> kuki linux
[15:25] <leak> users have been asking if we can give them ubuntuone
[15:26] <dobey> yes, the sources for the gnome pieces are all available on gnome.org
[15:26] <leak> not the gnome pieces
[15:26] <leak> for ubuntuone
[15:26] <dobey> and the ubuntuone client sources are on launchpad
[15:26] <leak> ok perfect
[15:26] <leak> let me check them out
[15:26] <dobey> we have tarball releases on the project download pages on launchpad
[15:27] <dobey> http://launchpad.net/ubuntuone-client/+download for example
[15:27] <leak> i was there atm thnk you :)
[15:28] <dobey> sigh. pulseaudio :(
[15:29] <leak> ?
[15:29] <leak> pulseaudio?
[15:29]  * dobey really wishes it would a) remember volume levels properly and b) stop distorting audio
[15:29] <dobey> yes, it angers me :)
[15:30] <dobey> because it's screwing up my audio
[15:30] <leak> lol :p
[15:31] <leak> pygtk huh ;p
[15:31] <dobey> yes
[15:31] <leak> i see this might require some dependencies and instalations.
[15:31] <leak> or some code adaptation
[15:32] <dobey> what desktop env. does this distro use?
[15:32] <leak> currently xfce 4.6
[15:32] <leak> but a new one is in thought
[15:32] <dobey> oh
[15:32] <leak> we are a minimal distro
[15:32] <leak> for netbooks
[15:33] <leak> more specifically acer aspire one
[15:33] <leak> so 8 gb ssd is really not much to work with
[15:33] <leak> current netbooks have more
[15:33] <leak> but support for the weaker versions of all of them is needed
[15:34] <dobey> well pygtk isn't too big
[15:35] <dobey> and we can fix the source to allow disabling building of the nautilus extension
[15:35] <leak> now that is nice
[15:36] <leak> that would be great
[15:36] <leak> by not limiting the client for gnome users
[15:36] <leak> the user range would increase
[15:36] <leak> and so its usability
[15:36] <dobey> and i think it might be possible to build the python-gnome-desktop stuff with only the gnome-keyring piece
[15:37] <leak> sweet :)
[15:37] <leak> then dependencies from it would be a minimum
[15:37] <dobey> and there is some work going on to get an xdg keyring that would replace gnome-keyring, and that all the desktops would share usage of
[15:39] <leak> so its a matter of waiting a bit for it
[16:09] <samme> hi all
[16:11] <samme> what depends do i need to run ubuntuone?
[16:11] <leak> :)
[16:11] <leak> samme:
[16:11] <leak> i just asked that question
[16:12] <leak> and dave answered on the channel
[16:13] <samme> 'oh ok :)
[16:13] <leak> ;)
[16:13] <leak> dobey:  samme is one of our users
[16:13] <leak> hence the question. he wasnt at the channel when we were discussing dependencies :)
[16:14] <leak> your project looks promissing. ill give it a run when i have my desktop fixed and aao back
[16:14] <leak> and then maybe we can sort out something? :)
[16:25]  * dobey isn't dave
[16:25] <dobey> heh
[16:26] <dobey> leak: we welcome help with making the client work on more systems
[16:27] <leak> dobey: i know you arent dave :)
[16:27] <leak> dave is a user on our support channel ;)
[16:27] <leak> ok ill give news.
[16:29] <dobey> ok, time for me to go get some lunch, and then come back and finish packing, and then off to the airport
[16:30] <leak> oh good flight
[16:33] <pillarist> i was curious if there are any plans to address file encryption?
[16:39] <pillarist> like, having ubuntuone run some encryption before uploading?
[16:54] <tcole> well, files are encrypted for upload; they aren't stored encrypted though
[16:55] <pillarist> guess i'd feel better if they were stored encrypted
[16:55] <pillarist> at least, the non-shared files
[16:56] <tcole> I think you'd have to trade that off against e.g. being able to access your files from the web
[16:57] <pillarist> i guess my use case it to primarily have a backup of files, especially if ubuntuone gets symlinks working
[16:59]  * tcole nods
[16:59] <tcole> in principle I think it is already possible to use with the ubuntu encrypted folder stuff
[16:59] <tcole> the tradeoff is that the web view won't make much sense
[17:00] <pillarist> hmm.  that may do the trick
[17:01] <pillarist> call me paranoid.
[17:37] <dobey> pillarist: if you were paranoid, you'd be encrypting them yourself first
[17:37] <dobey> :)
[17:38] <pillarist> dobey: i think password safe database are pre-encrypted
[17:39] <dobey> there are some very difficult usability issues with doing automatic encryption, which we haven't figured out yet
[17:40] <pillarist> yeah, i would be foregoing web access and sharing documents.
[17:41] <dobey> if you encrypt locally with a key that we don't have, yes, mostly
[17:41] <dobey> though as long as you had the key, you could download the encrypted file from the web ui and decrypt it
[17:41] <dobey> so not entirely forgoing use of the web ui, but some features of it
[17:43] <dobey> well my little "run apport for dbus errors" hack seems to be giving some rather solid proof that dbus sucks :(
[17:43] <pillarist> i was thinking the My Files could be encrypted, whereas Shared With Me wouldn't
[17:43] <pillarist> kind of depends if you're using it for secure backup, or multi-site access
[17:44] <dobey> well, it depends
[17:44] <dobey> shared with me wouldn't be encrypted if the other user didn't encrypt it i guess
[17:44] <dobey> which sort of means that we can't do automatic encryption on the client side really
[17:45] <netlore> Since you're sharing by email address, could you not use the existing PGP keyservers to do the encryption?
[17:47] <dobey> netlore: that would only be encryption in transit, which we already do anyway
[17:48] <dobey> really what most people probably actually want is encryption in transit, and encrypted storage on the server, with unencrypted files locally (though with the ability to have the local storage be on an encrypted filesystem)
[17:49] <pillarist> dobey: aye aye
[17:50] <netlore> Yeah, good point....
[17:50] <dobey> although, i'm also not sure what the resource usage of encrypting 5M files for 200K users all simultaneously would be like
[17:50] <dobey> probably "not fun"
[17:51] <pillarist> couldn't the client do that locally?
[17:51] <dobey> no
[17:52] <dobey> well it could, but then it would be just as secure as not encrypting, since we'd have to distribute the private key to the user's machine
[17:52] <dobey> granted we would probably have a different private key for each user
[17:53] <dobey> private key on server though, means we do a lot more stuff in the way of having it actually be usable
[17:54] <dobey> although, there is still this: http://identi.ca/notice/7674880
[17:54] <dobey> :)
[17:56] <dobey> and this one too: http://identi.ca/notice/6594361
[17:56] <pillarist> right
[17:56] <dobey> yay, twitter seems to have faceplanted again :-/
[17:57] <pillarist> i'll get to work building my data center
[17:59] <dobey> it's sort of like how car alarms don't prevent car thieves from stealing cars. they prevent stupid regular thieves from screwing up your car too bad tyring to steal it. if a professional car thief wants to steal a car, he's going to steal it.
[18:00] <pillarist> right
[18:00] <dobey> although, car alarms going off is a regular occurance because people also don't know how to install them properly, so even dumb thieves can get away with stealing cars or stuff out of them, with the alarm going off
[18:01] <dobey> but eh
[18:02] <dobey> "No pleasing some people." -- Brian
[18:04] <pillarist> google services are convenient, but they're going to read your mail
[18:07] <dobey> well yes
[18:07] <dobey> google's entire business is data mining
[18:07] <pillarist> and listen to your phone calls.  and sift your calendar.
[18:14] <dobey> http://www.youtube.com/view_play_list?p=8C9E6213AEFC9E0B
[18:14] <pillarist> nice
[23:10] <CardinalFang> kenvandine, Hey!
[23:11] <CardinalFang> kenvandine, Do we have a couchdb package that checks authentication?  What I have in karmic doesn't seem to.