←back to thread

How Dropbox Hacks Your Mac

(applehelpwriter.com)
1037 points 8bitben | 1 comments | 09 Sep 16 15:52 UTC | HN request time: 0s | source
Show context
Sir_Cmpwn ◴[09 Sep 16 16:27 UTC] No.12463720[source]
Great article, but poor conclusion. He finds that Dropbox is untrustworthy, a finding that likely surprises no one, and reaches for iCloud as the solution. Why move into another walled garden driven by corporate interests? OwnCloud or a similar self hosted solution would be better. I just use NFS and a dead simple storage server to make ~/shared available on all of my machines.
replies(5): >>12463782 #>>12463790 #>>12463798 #>>12464361 #>>12467783 #
woah ◴[09 Sep 16 16:36 UTC] No.12463798[source]
If you're going to use a Mac, you're trusting Apple already. How does using iCloud make you trust them more?
replies(2): >>12463841 #>>12464156 #
Sir_Cmpwn ◴[09 Sep 16 16:41 UTC] No.12463841[source]
I wouldn't use a Mac, either :)
replies(1): >>12463908 #
Myrth ◴[09 Sep 16 16:47 UTC] No.12463908[source]
And if you're using Ubuntu, you're trusting package managers, and if you're using Gentoo, you're trusting original developers (how often do you audit source code?)
replies(3): >>12463958 #>>12463985 #>>12465868 #
Sir_Cmpwn ◴[09 Sep 16 16:51 UTC] No.12463958[source]
>And if you're using Ubuntu, you're trusting package managers, and if you're using Gentoo, you're trusting original developers

This is correct. Consider, however, the motivations of the people involved. Apple's motivations are to make money from you. Debian's motiviations (intentionally avoiding Ubuntu here) are to make a good user-centric system. Packages are signed by named individuals that I can personally get to know and trust, and with an accessible process - I can download their package sources and build or verify or tweak them the same way that the maintainer can, report bugs and ask questions directly to them, etc. I trust this model much more than I trust the model of a company who, at the end of the day, has a bottom line and will make compromises to ensure it remains where they need it.

Apple is very well known for using proprietary formats, adapters, you name it. Apple's cloud is also write-only, they intentionally make it difficult for you to pull data out of it and interop with other services. These decisions serve the company's interests, not yours.

>how often do you audit source code?

You would be surprised!

replies(3): >>12464172 #>>12464837 #>>12477911 #
thingexplainer ◴[12 Sep 16 07:55 UTC] No.12477911{5}[source]
>> how often do you audit source code?

> You would be surprised!

How often do you audit OwnCloud's source code? (I'd describe it as "naive.")

replies(1): >>12477927 #
Sir_Cmpwn ◴[12 Sep 16 08:00 UTC] No.12477927[source]
I actually don't use OwnCloud, so never.
replies(1): >>12554081 #
1. thingexplainer ◴[22 Sep 16 03:19 UTC] No.12554081{7}[source]
Something to consider when you're comparing products based on "trustworthiness."