lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: exibar at thelair.com (Exibar)
Subject: Google Desktop Search

Hmmmm... I wonder if their keeping a database of these numbers and the
associated IP and/or MAC address as well?

  Has anyone installed this on a non-networked machine?

----- Original Message ----- 
From: "Mary Landesman" <mlande@...lsouth.net>
To: <full-disclosure@...ts.netsys.com>
Sent: Friday, October 15, 2004 11:34 AM
Subject: Re: [Full-Disclosure] Google Desktop Search


> >From their privacy policy:
>
> -------------------------------
> Your copy of Google Desktop Search includes a unique application number.
> When you install Google Desktop Search, this number and a message
indicating
> whether the installation succeeded is sent back to Google so that we can
> make the software work better. Additionally, when Google Desktop Search
> automatically checks to see if a new version is available, the current
> version number and the unique application number are sent to Google. If
you
> choose to send us non-personal information about your use of Google
Desktop
> Search, the unique application number with this non-personal information
> also helps us understand how you use Google Desktop Search so that we can
> make it work better. The unique application number is required for Google
> Desktop Search to work and cannot be disabled.
> -------------------------------
>
> >> The unique application number is required for Google Desktop Search to
> work and cannot be disabled. <<
>
> I have to wonder why that is.
>
> -- Mary
>
> ----- Original Message ----- 
> From: "Ivan Krstic" <krstic@....harvard.edu>
> To: "DogoBrazil" <dogobrazil@...mac.com>
> Cc: <full-disclosure@...ts.netsys.com>
> Sent: Friday, October 15, 2004 10:14 AM
> Subject: Re: [Full-Disclosure] Google Desktop Search
>
>
> > DogoBrazil wrote:
> > > The research came
> > > with a bit more than I expected 'cause the engine  went to some
webmail
> > > based accounts: Yahoo and MSN. I could click in the results and opened
> > > my Yahoo Mail inbox page without a password. Maybe some password lost
in
> > > my HD? Maybe some page cached?
> >
> > http://desktop.google.com/index.html enumerates the file types that
> > Google Desktop Search currently indexes. Your IE cache and Outlook
> > correspondence will also get indexed, so you could have been looking at
> > either a page from your browser cache, or a page you manually saved to
> > your hard drive. The program itself most certainly does not include
> > functionality to index remote, web-based mailboxes such as Yahoo and
MSN.
> >
> > Ivan
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>


Powered by blists - more mailing lists