[01:07] anyone feel like testing and confirming bug 1087873 [01:07] Launchpad bug 1087873 in unity-lens-github (Ubuntu) "lens privacy feature does not work on all lenses" [Undecided,New] https://launchpad.net/bugs/1087873 [04:07] Quiet. [16:06] hello all you good people [16:07] i am looking at the dash shopping lens, trying to understand how it works, and to see if there are options to make it better, and more acceptable .. [16:08] are there any new directions taken on this issue that are new at the moment ? [16:08] seen the bug reports and its buzzing all over the web [16:08] privacy wise that is.. [16:09] any one has some insights on the topic ? [16:13] sudo apt-get --purge remove [16:13] yeah , thats an option too [16:14] sudo apt-get install xubuntu-desktop [16:15] yus [16:16] also possible [16:16] doesn't affect me.. unity doesn't even work with my radeon 5670 [16:17] i see [16:19] that's what made me red faced to begin with and i downloaded the Xubuntu iso... then i hear about this amazon mess.. and that's like a nail right there, right in the coffin... so i'm like forget normal ubuntu... long live Xubuntu!! [16:20] * Zael shakes a pitchfork at it [16:20] i am looking for some idea to change it for the good .. [16:21] but you dont use the dash , so you dont know how it works [16:21] i am testing it a bit right now [16:21] it's simple... make it default off and either during installation of ubuntu or on the first use of unity's search make the user aware of it and give them the option to turn it on if they wish [16:22] i heard it still sends stuff, even when you turn it off though [16:23] i can see what happens , using etherape [16:23] very visual .. ;P [16:24] Zael, can you back that up with facts? [16:24] i can try right now [16:24] if it still sends data when switched off, that's a bug, and should be filed as such [16:24] what would i need to back up again? [16:24] if you like [16:25] oh, i just heard it.. i don't know if it's true.. yellabs could probably tell you [16:25] ok, so rumour. fair enough [16:25] I heard it eats your first born child. [16:25] popey: unity-lens-github doesn't follow the privacy flag [16:25] i heard it's friends with steve ballmer [16:26] IdleOne, file a bug against that lens? [16:26] bug 1087873 [16:26] Launchpad bug 1087873 in unity-lens-github (Ubuntu) "lens privacy feature does not work on all lenses" [Undecided,New] https://launchpad.net/bugs/1087873 [16:26] AlanBell: already did [16:27] popey , did you see the image idea ? [16:27] by the way i filed several bugs [16:27] excellent [16:27] Zael: this channel is for real discussion, casual but real facts. [16:27] yellabs, what image? [16:27] http://imgur.com/E1dHt [16:27] its just an idea [16:27] but maybe an option [16:27] IdleOne: something's wrong with your face? [16:27] for the lens [16:28] jokes are good, but when in the middle of a serious topic it doesn't really help to make silly comments. [16:28] k, gotcha [16:28] yellabs, the home lens is functionally what your globe thing does [16:29] the whole point of the home lens (the dash) is that it searches _everything_ its possible to search, online and offline [16:29] hmm, if i see home , i think its searching my home [16:29] if i see globe, i know its searching the globe [16:29] see the difference ? [16:30] tested the off setting, its indeed off and not connecting to the canonical search server [16:30] i suppose it indexes [16:31] i remember privacy issues arose from similar circumstances in windows, when it started adding indexing and online searching [16:31] I am actually having a bit of a discussion about this on Google Plus now [16:31] its buzzing all over the web [16:32] but somehow some try to ignore the issue [16:32] no, a load of hype is buzzing all over the web :) [16:32] :P [16:32] would be rather smashing if someone could confirm bug 1087873 [16:32] Launchpad bug 1087873 in unity-lens-github (Ubuntu) "lens privacy feature does not work on all lenses" [Undecided,New] https://launchpad.net/bugs/1087873 [16:32] yellabs: to some people, it's not an issue... i would wager those same people are the ones that freely publish their real information and activities all over social networking sites [16:33] LOL [16:33] to me it wasn't an issue until they added the privacy control [16:33] did it wake up something ? [16:34] well it doesn't work [16:34] even if the feature is defaulted on... there should be a large effort for awareness being made [16:34] like a real, in your face, warning on first use [16:35] https://lists.launchpad.net/unity-dev/msg00536.html [16:35] The issue IMHO is not if the feature should exist or not, it exists and is not going away. The issue is not about how some people handle thier privacy comapared to others, we all have different ideas about what we consider to be private. The issue is what would be the best way to handle it so that everyone can feel comfortable enough to use the feature if they wanted to use it. [16:35] compared* [16:35] yes, I agree with that [16:35] i agree, and be aware of it's existence [16:36] http://people.ubuntu.com/~alanbell/Privacy.png [16:36] did that mockup earlier, I would like to see that in the privacy dialog, so the user can decide which lenses get to see the dash home searches [16:36] then you don't have to uninstall the lenses you don't want to see all searches [16:37] like the control over search engines in your browser ? [16:37] AlanBell: that looks like a sensible idea. It should be user opt in on a lens by lens choice. [16:37] full control over the lenses ? [16:38] AlanBell, I'd like a two-step thing. one option which says "it can appear in the dash" and another which says "..and it can go online" [16:38] which means the lens specifications need to have some required global rules to make sure they all follow at the minimum the privacy flag [16:39] i agree, popey [16:39] hmm, the globe icon with checkbox ? [16:40] :) [16:40] include online search option .. [16:42] popey: we have no technical means of preventing a process from going online [16:42] we would have to do apparmor or something to do that [16:43] AlanBell: perhaps a little box at the bottom with a description of a selected lens explaining what each lens does and what data will be sent over the wire if enabled. [16:43] I don't want to propose something that is hard or impossible [16:43] yeah, the .lens file could be extended with a few fields like "this lens would like to see global searches" and "this lens sends queries off the local machine" [16:44] or "this lens sends queries to an intranet server [16:44] that use-case is distinct from sending data to consumer websites I feel. [16:45] basically give the user as much info as possible so they make the most informed decision possible (without cluttering up the window of course) [16:46] just an tick box , include online search , is not an option ? is it possible ? [16:46] AlanBell: protocol wrap it or run it as a different user with changed ip tables [16:46] that's messy though [16:47] have to eat , great that there is thought about the issue, i feel there will be an very good idea for inprovement ! [16:47] I guess, like tsocks does [16:47] yes [16:48] yellabs: a tickbox is easy. The code that the tickbox is attached to is less easy :) [17:01] i see [17:05] can it not be connected to the off switch thats used in privacy settings right now ? [17:06] that already coded , so you dont have to do it twice [17:07] all you need is the tickbox to be connected to the toggle switch of privacy settings.. ? [17:08] yeah, that one is the problem I have [17:08] ah , okey [17:08] each scope has to have code in it to check the state of the checkbox [17:09] so privacy is opt-in for scope authors [17:11] hmm [17:14] it needs to be organised i guess, obligatory code to go before any other code for the checkbox , if that would be the solution [17:20] how does the on of privacy switch work now ? [17:21] like this http://bazaar.launchpad.net/~mhall119/onehundredscopes/unity-locoteams-scope/revision/4 [17:21] you need to add that code to every scope that you want to respect the flag [17:22] only a few lines, however it isn't documented and it is utterly optional [17:23] wow thats short [17:24] :P [17:25] yeah, the checkbox sets com.canonical.Unity.Lenses/remote-content-search to 'None' [17:25] the scopes we ship by default check for that and turn themselves off [17:25] any other scope won't check and won't turn itself off [17:29] so there is no group of people that check the scope's for good behavior ? [17:29] before they land in ubuntu ? [17:30] or , some one assigned to repackage them to include the code of the on / off option, maybe even automated somehow ? [17:30] ( some one ) read 'team ` [17:33] hmm , thinking [17:33] scope is running on top of ? [17:36] difficult . for sure [17:44] i thought it would be better like this , [17:44] http://imgur.com/E1dHt [17:44] but i guess, that hits the same problem .. [17:44] cant use the on / off option because of the design right now [17:45] any way, i appreciate the hard work you folks put into it, and thanks for the insight .. [17:46] in a few day's i have some more time, and will look into it too, although i am more of an desktop user .. who know i might come up with something [17:46] :) [17:50] maybe the query should be sent through a verification system, and the verification can be turned on / of , so the query is rejected when toggle switch to off, but thats back to scratch, wich does not seem the way to go [17:50] any way, take care you all , see you next time [17:50] thanks for your time [17:50] :) [18:00] * yellabs background [18:05] yellabs: one would hope the Application Review Board would be checking scopes to see if they implement the privacy flag, however I have no information to suggest that they do, and I have bug 1087873 to suggest that they don't [18:05] Launchpad bug 1087873 in unity-lens-github (Ubuntu) "lens privacy feature does not work on all lenses" [Undecided,New] https://launchpad.net/bugs/1087873 [18:08] ok [18:10] reading it [18:16] read it.. [18:17] work to be done.. (y) [20:57] what is different between Linux and freebsd? [20:58] u01010: please keep in mind that this channel is for ubuntu related discussion - try in #ubuntu-offtopic or in ##linux [20:59] there is tools in fedora like system-config... or system-network can i user them in ubuntu? [21:00] u01010: no [21:00] is there any alternative ? [21:02] u01010: The Ubuntu Manual will help you become familiar with everyday tasks such as surfing the web, listening to music and scanning documents. With an emphasis on easy to follow instructions, it is suitable for all levels of experience. http://ubuntu-manual.org/ [21:03] gnutbert: I need this tools in server with out GUI [21:04] u01010: are you using ubuntu-server? then you will find support in #ubuntu-server [22:41] Chaos7Theory: Have you looked at metasploit or similar? [22:42] Metasploit? [22:42] Chaos7Theory: Its a framework for utilising exploits to deliver payloads [22:42] orlok: In layman's terms? :X [22:43] Chaos7Theory: Help people take a theoretical software vulnrability and add the payload of their choice to it so the vulnrable system runs code of the attackers choosing, in other words, 0wns the server [22:45] So whitehat hackers? I'm not really that experienced of a programmer really yet. [22:46] Chaos7Theory: yes, the tool is developed by "legitimate" security researchers [22:47] Chaos7Theory: There are unvountable linux systems on the internet that are "infected" however, and its nothing to do with any software flaw however, only bad management [22:48] uncountable, even [22:48] Chaos7Theory: bad passwor choice is much more of an issue for any linux or unix like system on the internet (combined with bad management) [22:49] orlok: Well, I'm also reading through the wiki page and a lot of the arguments hold water as to why even if Linux were more popular, there'd still have to be many hurdles to jump over before a virus can propogate. [22:50] Chaos7Theory: Yup. Bad passwords are easier to find and compromise than a remote root exploit [22:50] One of the main reasons I'm migrating back to Linux over Windows is it's universal package/updating system [22:50] Chaos7Theory: Any system running ssh connected to the internet will get tens of brute force attacks per day, at least. Ditto with apache and php exploit attempts. [22:51] Chaos7Theory: Generally from CHina, Russia, Pakistan, etc etc. [22:51] Chaos7Theory: Occasionally i get attacks from english speaking countries, its rare enough that i usually send an email. Only a few times a year [22:51] Occasionally i make phone calls. Once i ended up talking to a guy from redhat. [22:51] I used to use Linux (Ubuntu) two years ago after I screwed up my Windows OS, but the support for 64-bit systems back then wasn't really stable enough. After taking a Linux course in college, I'm migrating back with the support being there now. [23:00] the supports not really changed in two years [23:02] Actually it has noticeably on my end. Before, wireless network adapters had trouble working out-of-the-box was the biggest deal, which isn't a problem anymore on my end.