OwnCloud

At work I’ve been thinking about cloud sync services, something like Dropbox without actually using Dropbox, because it’s non-kosher around these parts. I thought about OwnCloud so I went investigating.

OwnCloud is neat, it’s a PHP script that will set itself up on a web host, and then provide you with a web interface like Dropbox and access to clients like Dropbox which mirror the function of Dropbox completely. This was a possible route to satisfy our legal people and maybe leverage cloud sync at work. As it turns out, it didn’t work. OwnCloud is a lost cause. I installed it on my iPage host and got it to work all up until I tried to connect the Mac desktop client to it. It got files perfectly well, but when I put a file in the owncloud folder to be synced back up to my host it all fell apart. The error was “errno 22” and ended up being shown to me as “Bad Request” – so that was a no-go. Then I thought maybe I could install OwnCloud on my Mac Pro server at work, keep it in house maybe. That also was a failure, the web side was fine, but the client just couldn’t connect no matter what I tried.

So I’m going to abandon the pursuit of OwnCloud. I’ve tried it and found that it just won’t work on what I’ve got. It was something that could have possibly worked and been great, but it’s got too many moving parts and it was a total failure when you tried to get all the parts to spin up and run. Oh well, at least now I know I can abandon OwnCloud and move forward.

Tag Painting in Day One Journal

I’ve been really enjoying DayOne and they have recently updated their app so that the iPad, iPhone and Mac Apps can all create and manage tags. What’s been missing is a way to blast in tags based on keywords.

In this example, every time I have a journal entry with “Scott” in it, I want it to be tagged “Scott”.

Here’s how I did it:

1) Open Terminal, go to ~/Dropbox/Apps/Day One/Journal.dayone/entries

2) FOR FILES THAT DON’T HAVE TAGS, A TAG SECTION, PAINT THE SECTIONS WITH THE TAG

find . -print0 |xargs -0 grep -L “<string>Scott</string>”|xargs grep -l “Scott” |xargs grep -l “<key>Tags</key>”|xargs -I file /usr/libexec/PlistBuddy -c “add Tags:Key string ‘Scott'” file

3) FOR FILES THAT DON’T HAVE TAGS, DON’T HAVE A TAG SECTION, CREATE TAG SECTION

find . -print0 |xargs -0 grep -L “<string>Scott</string>”|xargs grep -l “Scott” |xargs grep -L “<key>Tags</key>”|xargs -I file /usr/libexec/PlistBuddy -c “add Tags array” file

4) Then go back to #2 and re-run it. Everything that has your text should be tagged with the text you choose.

Swanky! The only thing you have to watch out for here is the little l (little ell) looks a lot like a capital I (capital-eye) – might be best to copy this into a browser and set the font to Courier just to make sure before you run it, also, the last xargs does the changes, so skipping out on that might be smart. I can’t make any guarantees that it’ll work, but as far as I can tell, it works great!

YMMV. Careful.

Slogger

Memories.Slogger

Every once in a while I run across something I’ve seen before but ignored accidentally until I see it in great big headlines and neon and stop to pay attention to it and discover that it does something I really really want. This particular afternoon it was the product Slogger from Brett Terpstra. The software is a Ruby script, and Ruby is a delightful programming language that I’ve had the pleasure of dabbling in. Nowhere near the level of Brett and the people who help him, but here and there, little things.

The need came from a simple Google query, IFTTT and Day One. Looking for some way to bridge that divide between the automatic web service that I’ve fallen in love with, IFTTT and Day One, the journaling software that works quite well and renders DropBox a “Killer App”. Dropbox is the glue that keeps my Day One system together, on my laptop, my desktop, and all my mobile devices. When I found Slogger it was a definite Eureka moment, the answer all in one place. I downloaded the code as the author describes and tried to set it up.

Monumental fail. Pieces everywhere, error codes puking on the screen faster than I could read, pages and pages of interpreter and compiler errors, all surrounding one “Ruby Gem” module called hpricot. I knew why this was fail-town for me, it was because I had installed XCode CLI tools in order to get the mac_google_authenticator PAM module built. That CLI package rendered my system retarded when it came to processing gem requests. In the Ruby world there is a system established for distributing software written in Ruby, it’s called ‘gem’ and you run it much like apt-get in Ubuntu, it’s really quite straightforward and never has given me fits – until. Everything was complicated by the fact that I couldn’t really find where XCode was on my machine, all the likely targets to search didn’t have anything relevant and my find command returned pages of errors and I didn’t have the patience to pick through a thousand lines of “Permission Denied” to find the one spot where the file was hidden.

Didn’t need to complain, as I knew the solution. Download XCode for real. So off to Apple, download the monster and install it. That satisfied hpricot, and everything else installed quite nicely. I set Slogger up, pointed it at my Dropbox and configured the plugins that I wanted. The initial run crashed and burned but I figured out why, it was an errant space in the line that points to the Day One folder, a symbolic link fixed that and I was again off to the races. Of all the plugins that I configured these were successful:

  1. BlogLogger
  2. facebookifttt
  3. goodreadslogger
  4. lastfmlogger
  5. pocketlogger
  6. rsslogger

Then there were the plugins I tried to configure but couldn’t:

  1. fitbit
  2. flickrlogger
  3. getgluelogger

The primary problem with the fitbit plugin was that fitgem, the Ruby assistant program that you have to install is a phantom. You install it, it’s successful, and then it’s gone. No trace of it exists. You try again, poof, nowhere. Plus for the plugin setup there are API codes, User codes, and oAuth codes. I get the reasoning behind all of them and getting most of them was not an issue. I felt a little awkward creating an “Application” for just myself, it seems kind of a waste of effort to ferret all these bits and peices into a semiformal request procedure, but doing it wasn’t hard or cost anything, so what the hell. The part where it all falls apart for fitbit is where you have to get the oAuth token, since fitgem never worked and it’s invocation from slogger should have opened a web browser and asked for my approval, all of that never happened. I tried to be sporting and do the heavy lifting myself but all I did was irritate the API for fitbit and I figured, what the hell, I got most of what I was after and moved the fitbit plugin into the “unused” folder and forgot all about it. Abandon ship, y’arrrr!

Flickr is a pain in the ass. It’s Yahoo and as such, it’s kind of an Internet leper. You need your Flickr number, there’s a site that makes that easy, except it doesn’t work. Flickr username? Feh, either the one in Flickr or your linked Yahoo ID is meaningless. I half figured it was in the URL anyways, but then I thought about it and I don’t really use Flickr all that much beyond a solitary IFTTT rule and that’s precarious as it is. The only attractive part of Flickr is they gave out 1TB of storage. Still lepers tho. So, abandon ship! Y’arrrrr!

GetGlue was the last great effort. Much like Klout, it’s a site that makes sense sort of, but the name is utterly silly. GetGlue. What the hell? Why? Glue has nothing to do with TV or Movies. The only connection I could think of was celluloid and horses-processed-into-glue sort of connection. They give away stickers, what a wonderful bit of pollution that is, and as a gimmick seems dumb. The plugin needs an RSS feed for the GetGlue Activity Stream. It appears as though the GetGlue folks have moved away from RSS and towards “widgets” which seems stupid as in this application RSS is the answer and widgets are worthless. Alas, Google searching for the RSS feed method was fruitless. I was half hoping for something like http://getglue.com/user/bluedepth/feed.rss, where I could just craft it up and be on my merry way. No. You have to “View Source” to find it, which is stupid because that is so full of CSS flotsam and jetsam as to be utterly incomprehensible. Again, my ardor for that particular service was fog on a hot day. I don’t need it. I don’t use it. Whatever! Abandon ship! y’arrrrr!

So I tried the slogger script, it failed, tore out fitbit goop and then it worked. Then I went into my Day One app and mopped up all the mess that testing had made. The only oddity I noticed was the BlogLogger completely missed out on the text on my WordPress site that was between pre tags. Meh. Not really a reason to kick the entire thing to the curb, just something to honestly stop using. HTML is a right bastard, almost all of the time. CSS is a filthy abomination, but we won’t go there.

I would say that tonight everything will work as it should for Slogger, but I have to race to work tonight to turn everything off because work is going to exit-stage-left when it comes to the Internet. They are turning the entire thing off, at least for a few hours. I can’t wait for tomorrow, there will be lulz.

So, to Mr. Terpstra, thank you for slogger. I’m sorry the plugins didn’t work, that fitgem was a phantom, but at least most of what I wanted worked. So we sound a victory cheer, sort of. Yaaay!

One Slipped Key

Death By ChocolateWhile working I wrote a little bit of SQL, trash really because it was just a one-shot query, real short too, and I wanted to show off the SQL code for making the iModules degree info pretty. Instead of clicking open, I clicked the save button. I found the file I thought I was opening and double-clicked. The computer asked me “Are you sure you want me to save using this file, overwriting the old file?” and I absent-mindedly clicked Yes.

The little useless fragment of SQL code replaced my huge SQL script. Boom. All gone. So sorry.

So then I was thinking about how I could recover the file, that it was on my laptop at home and so if I could turn off the Wifi at home and start my laptop I could copy the file before the Dropbox sync app replaced what I needed with my mistake.

But then I thought there should be something in Dropbox that helps address my stupidity. Turns out there is. Right click on your oops file, click on “View Previous Versions” and it opens a website and shows you all the previous times you saved your file on the service. Oh look, there’s all my hard work, right there. Click. Whew!

So, how much do I love Dropbox? Even more.

 

photo by: JD Hancock

Nook HD: Built for Sluggish Annoyance

47:366(Y2) - HungeringI really would like Apple to come out with a iPad Mini with Retina display. I’m quite tired of this Nook HD. It’s not very user-friendly and definitely not me-friendly. I don’t want to take a hammer to the device but when I use it, I sort of do.

So I was online to a site that lets you browse various fan-written fiction stories and they have a feature where you can download epub files, so I did so and saved it to my Dropbox. Then I went into Dropbox app on my Nook HD and went to go look for it. The Wifi on the Nook HD is a flaky pile of junk so that took way longer than it should have. Once I found the file I wanted I downloaded it to my Nook because the only other way to get it in there is to pop the MicroSD card, root around for a universal adapter and then put it in that way. That’s annoying, I’d much rather just be able to tap and download, like I would with an iPad Mini.

I downloaded it from my Dropbox and it ended up somewhere in my Nook’s own storage, which I hate to use, I much prefer my MicroSD plugged into the Nook instead, but there is no way to tell it where you want it to store the files. So I had to find another app called OpenExplorer which has an awful interface but lets you move files around the Nook.

Then the Nook library was confused about where I put that file. Every time I went to go look for it and tap on what it found, I’d be sent to the Wifi activation screen, where I would turn it on (why?) and then nothing. Nothing more than that. When I went back to the search and tapped on my file, it told me “File is not present.” and that was that.

I’ve never been happy with the Nook HD user interface. I bought it because it was cheap and supported Barnes & Nobles but really I think I would have been better off getting an iPad Mini. I regret this Nook HD. It could be so much better if only the B&N User Interface wasn’t so fascist. That’s what it really is. B&N doesn’t trust anyone with anything so they make it impossible to use beyond the B&N Book Experience. I don’t want all my ebooks at B&N, I’ve got thousands of ePub files all on my own – could I upload them and locker them at B&N? Of course not. That’s what the MicroSD card is for. So what value does the B&N store have for me? Little.

So is there any way I could get ePubs from Project Guternberg? Nope. I have to find some other way to get them, like on my iPad and then use Dropbox and OpenExplorer to… it’s way too much work. I’m tired even thinking about it.

So, if and when Apple decides to sell a iPad Mini Retina I’ll put all my Nook stuff on eBay and save up for the iPad Mini Retina. At least iOS respects me and I don’t feel like a criminal trying to cajole Android to give an inch.

I still don’t know why people think Android is any good. Wretched system.

photo by: Nomadic Lass

Saving your bacon with Dropbox

Several days ago at work I had someone approach me with a terrible tale of woe. They were helping a graduate student with a technical problem and wanted some guidance from me. The graduate student had a USB memory stick that had their entire academic production stored on it and they didn’t have backups anywhere else. This student went to Wal-Mart to print out pictures that were stored on this memory stick and when they had returned to Walwood they found that the memory stick no longer worked.

Then I got involved when the staff member helping this graduate student came to me with proxied panic about the data that this graduate student had lost. I plugged the device into my iMac thinking that at least the Mac would be able to display some sort of basic block device even if the filesystem was corrupted or damaged somehow. The USB memory stick was very old and my Mac noticed the device but refused to even display the block device details – so while the controller was apparently working, the channels further along towards the flash memory chips was not working as expected. There was nothing I could do to help the graduate student or the staff member and I felt just terrible. That there are no backups just made the panic more present and awful.

What could the graduate student do to mitigate this? The answer is in the clouds. I told the staff member that it wasn’t enough to simply tell graduate students that they should get some sort of cloud infrastructure to put their information on, but that they had to be stronger about it. That they had to insist that all students get some sort of cloud infrastructure to store their data. The cloud infrastructure that I prefer hands down is Dropbox. I use Dropbox and I love it, but when I tried to extend Dropbox services for the University I ran into some legal issues which pretty much precluded me using it – but none of that would preclude graduate students from using the system.

What is it about the cloud that drives me to it so strongly? It takes away a huge issue in one firm slash. The question of backing up your data. Using the cloud effectively abstracts away storage from the user, takes it elsewhere to be handled by people who spend their entire time only considering the proper storage and backup of data. Dropbox relies on Amazon S3 for primary storage and it’s Amazon that does the backups and the media shifting and everything that if you were to read an older “protect yourself” blog post would encourage you to do yourself. Instead of relying on you to do all the heavy lifting, which lets face it, we all want the benefits of that protection but sometimes getting to that point can be daunting, having it abstracted away makes a lot of sense. If there is a problem with Amazon S3, then the Internet has a bigger problem and if that’s the case, I would argue that Earth has a problem and that singular condition trumps the conditions of your backups because there are other more important things to consider. Now, please note that I am not directly advocating loading your data into Dropbox and then ignoring secondary backup completely, but for the majority of people out there, I do believe that Dropbox and Amazon S3 is enough to ensure your data security and persistence enough to stop here. Nothing stops anyone from duplicating their Dropbox contents on another storage medium but only those who are really invested in technology really need to move beyond what Dropbox provides.

I think every student should get a Dropbox account. The basic one is free and you can store up to 2GB and Dropbox has several ways you can win more space, such as referrals and such. For the panicked graduate student there is little that can be done beyond perhaps using a data recovery service such as the one I had previous experience with, Secure Data Recovery but the price tag on recovery with them is very expensive. You only use their services because you have to, and it’s a blessing that they are there, for when shit hits the fan.

I also think as a sidelight to this, that people invest in a diversified storage layout, especially when using public systems like those at Wal-Mart. Flash drives are very cheap now and it’s easier to kill a cheap throwaway “sacrificial lamb” than it is to watch your entire life disappear in a puff of logic from an overused terminal and it’s possibly damaged or shorted-out USB port. It is also my strong professional recommendation that people put lifespans on the devices they depend on. USB Hard Drives should be replaced after five years, no matter how long they have been running or not. USB sticks should be replaced every six months. Flash technology is not bulletproof, these devices degrade over time and it’s best to be safe and not sorry and if it costs a little extra or seems wasteful, then my argument is, so be it. Better to waste money on devices you don’t need then have to spend a thousand times more to recover data from a device that you errantly depended upon for far too long.

If I were in the academic sector at my University I would take this threat very seriously and as a value-added service to the student population I would find some way to set up a “University Cloud” storage system, and open-source variant that provides the same functions that Dropbox provides, alas, I am on the wrong side of the aisle on this, so all I can do is load my good ideas into my professional trebuchet and lob it over the walls of the ivory tower. Maybe someone will read this and it’ll spark something. Just some cursory searching on the network has led me to some possibilities:

Thanks to Quora for this list

Above and beyond everything else, when your life is becoming more and more digitally based it becomes a new vital thing to protect yourself from loss. The maxim “An ounce of prevention is worth a pound of cure” is more relevant and important than you may have originally considered. Don’t end up being pushed up against a wall, protect yourself, backup your digital life!

Sharing

I ran into an inconvenience with the current way I share socially
online. I have established a new workflow. Short messages still end up
going to Twitter, and if I feel like they are worth sending to Facebook
I use “Selective Tweets” to push that single tweet forward into
Facebook. For longer entires I write them up in Day One no matter if
they are public or private and then save them there and then share them
via email if they are public with my WordPress blog. If they are private
matters, they simply get shared with Facebook with a default stringent
security setting so only the right people can see those posts.

The email routine actually has been hit and miss to start but now it’s
working out quite nicely. First I migrated my blog from WordPress.com to
Wordpress.org. This is just me moving stuff from a companies site (.com)
to the domain that I own with Scott (windchilde.com) and I figure since
I’m paying for it anyways I might as well use it. Plus the switch over
to the windchilde.com domain also allows me unlimited storage and
unlimited bandwidth so I can share photos and videos without having to
worry about running into any storage caps or having to pay for extra
storage when I’m already paying for a pretty good deal with the host
that runs windchilde.com. I originally started with WordPress.org and
figured that Jetpack, which is a feature crosstalk package between
Wordpress.com and WordPress.org, extending some of the things that I
liked about WordPress.com around my installation of WordPress.org for
free. One of those options was “Post by Email” which gave me a
gobbledegook address at post.wordpress.com. That feature never worked
for me. It was supposed to be turn-key but it fell on it’s face. So I
turned to plugins, which are how you can extend WordPress.org sites, but
not WordPress.com sites. The company keeps a tight lid on things like
that where the “DIY” system is far more flexible and accommodating. I
downloaded the plugin called “Postie” and configured it to use a POP
account that I created on the windchilde.com domain and got that all set
up. There were a wee bit of growing pains regarding how to set
Categories and Tags in the email posts that I was making out of Day One.
What I had was a rather clunky Evernote note with the copied text from
my WordPress Category page so I could refer to that to pick and choose
which category I wanted the email post to go into. This was a mess. I
thought about it for a while and when I was done working out at Anytime
Fitness it struck me in a eureka moment; Why not just use TextExpander
to do the heavy lifting? So I started TextExpander on my MBP at home and
it came up, loaded the settings from my Dropbox (neat) and I created a
new snippet, called it “Categories” and set it’s trigger to be “;cat”.
Then I loaded all my categories from WordPress into a bracketed
pull-down list that TextExpander enables you to make on-the-fly so once
I’m done with Day One editing, I can save the entry (also is stored in
my Dropbox, yay!) and then click Share, Email, and then with the open
email I can just type in the trigger for each category I want to add and
I don’t need to remember to go to Evernote to get the list, or risk a
typo screwing everything up. Using Categories this way is really
convenient and tags are a snap to add as well.

Every once in a while I like to plug software that really works for me.
I plug the tarnations out of Mac, of course, as it’s the platform that I
can actually get my work done on. The apps that run on the Mac make the
rest of it work oh-so-well. Day One is a magnificent personal journaling
app. It’s private and password protected on all my devices and stored on
my Dropbox so I don’t have to screw around with backups or restores or
worrying that my entire Journal may just flit off into nothingness if my
MBP or a flash drive decides to play dumb on me. Plus Day One has
in-built sharing features, so I can share via Email, Twitter, or
Facebook if I want to. WordPress.org is not really software that runs on
my Mac, but instead runs on a host. The host I use is iPage.com and they
do a competent job. Setting up a WordPress.org site is embarrassingly
easy, mostly just a handful of clicks and you get a starter email with
the address you should use and your username and a temporary password. I
started to use WordPress because I left LiveJournal when the Russians
bought SixApart, the company that runs LiveJournal. Not that I have
anything against russians, but I’m not a huge fan of my words in that
place, it’s a personal thing. WordPress.org also enables commenting and
stats collection and automatically publicizes on it’s own to Twitter and
Facebook and Tumblr so I don’t have to futz around and create links to
my blog posts after the fact – WordPress does it for me.

Day One stores everything, WordPress stores my public lengthy stories,
Facebook stores my private lengthy stories and Twitter and Facebook
handle the rest – the tiny stuff. It’s all held together by Dropbox,
TextExpander, Day One app, my host, WordPress.org, Twitter, Facebook,
and Tumblr. It seems complicated and it is rather too-involved, but this
way I can write freely without having to concern myself with
self-censorship or exposing the wrong people to the wrong kind of
information. This way it’s all compact and interrelated and convenient.
So far, this is great for me and it’s how I am able to “have my cake and
eat it too”, which I’m a huge fan of in general.

All these products that I mentioned are either cheap or free. Nothing
cost me an arm or a leg, even the host, when you spread the cost over a
whole year is a pittance. I could even help friends and family set up
their own WordPress.org blogs on my host if they, and Scott, agreed. So,
if you think some of this would suit you and Scott’s good with it, just
let me know.

 

Google Drive Failure

Google Drive is a failure.

Google Drive was released yesterday, and I clicked the button on the website letting Google know I was interested in their product. I received an email late last night informing me that my Google Drive was ready. This morning, on a lark really, I went to the Google Drive website and clicked on the download link for the sync application to add to my work iMac. I downloaded the DMG fie without a problem and opened it up. I copied the Google Drive app to my Applications folder, like you are supposed to with Macintosh, and then I sat back and marveled at it. Google Drive, finally.

I’ve been a loyal Dropbox customer for years and back in January I sprang for the $100 a year expansion of my Dropbox up to 50GB. Everything I use connects to my Dropbox via the Dropbox API and just for the record, I am totally in-love with Dropbox. There is no reason for me to leave them as a customer. But even if you are loyal, it doesn’t mean you can’t explore. I have a professional account with Box.com through my work, and we arranged that after drop.io was consumed by the wraiths at Facebook. I have a personal Box.net account with 50GB but I don’t use it because Box only allows sync with paid accounts, so it’s not worth my while. Google Drive was just along these lines, just another option to look into.

So I started Google Drive on my iMac and I was asked to authenticate, something I expected. Then nothing. I started the app again and nothing. I opened up the Console app and here is what I found:

4/25/12 7:17:44 AM Google Drive[22481] *** __NSAutoreleaseNoPool(): Object 0x2e2ba80 of class OC_PythonString autoreleased with no pool in place – just leaking

4/25/12 7:17:44 AM Google Drive[22481] *** __NSAutoreleaseNoPool(): Object 0x2e37440 of class OC_PythonString autoreleased with no pool in place – just leaking

4/25/12 7:17:44 AM Google Drive[22481] *** __NSAutoreleaseNoPool(): Object 0x2e332f0 of class NSCFString autoreleased with no pool in place – just leaking

4/25/12 7:17:44 AM Google Drive[22481] *** __NSAutoreleaseNoPool(): Object 0x2e32600 of class NSCFString autoreleased with no pool in place – just leaking

4/25/12 7:17:45 AM [0x0–0x221c21a].com.google.GoogleDrive[22481] 2012–04–25 07:17:45.119 Google Drive Icon Helper[22488:903] Inject result: 0

So, it’s broken. This isn’t the first time a new app was built that failed horribly on my iMac. If anyone cares, and perhaps if anyone from Google is reading, this is a standard 2009–2010 iMac running Mac OSX 10.6.8. The only thing different about this particular Mac is that the account has it’s home on an AFP-connected OD-domain’ed Apple xServer. A network home. This causes headaches for Adobe Acrobat Reader so it’s probably the reason why Google Drive collapses on startup.

Since I can’t run the application, and since it wasn’t designed elegantly to take into account those people who have network-based computers like mine – unlike Box.com’s sync app or Dropboxes sync app, I can only state that Google Drive is not ready for prime time. Google Drive is not ready to compete in the marketplace and Google has to go back to the drawing board and try again.

Dropbox Lied to Users About Data Security, Complaint to FTC Alleges | Threat Level | Wired.com

Dropbox Lied to Users About Data Security, Complaint to FTC Alleges | Threat Level | Wired.com.

Read the above article, it’s quite good and covers the problems that many geeks have with Dropbox. I have to admit that I’m quite fond of finding ways to “Have my cake and eat it too” and in the spirit of that saying it’s important to highlight a core issue that needs to be covered: If you don’t manage your own security, you don’t have any.

Every service is vulnerable to a search and seizure order as long as it’s hardware exists within the United States. Any company that claims that they protect your data even from this basic assumption is lying to you. You can help them by helping yourself. The people who run Dropbox certainly have aims to secure your data, otherwise nobody but a scant few would be willing to store their data in the cloud. This situation is only half-way to what is really required to make a service like Dropbox a real charmer. It comes down to security and I’ve written about it at length before. The end user has to meet Dropbox for the other half of the way. Dropbox encrypts their data using AES-256 and they have a master key that they use along with yours so that they can maintain a backdoor in case of a search and seizure order to fulfill. Protect yourself by using any number of applications, ranging from TrueCrypt, iCrypt, openssh, to encrypted DMG files. If you create one of these encrypted files to store your private information then send it to Dropbox, even if they have to divulge the file to the authorities all they can provide them is another AES-256 encrypted file that they don’t have a key to. When the authorities try to pry open the file, all they’ll see is noise, because they don’t have your key.

It’s really quite easy when you think of it, Dropbox is at most 50% secure. You can provide another 50% making your use of Dropbox 100% secure. It all comes down to going that little extra inch with any of the tools covered above. I can’t help but really love encrypted DMG files as they are the most convenient to use with Macs. You just double-click on the DMG file, enter in your password, and the volume is mounted as if it were a drive on your computer. All the files are plain and easy to use. Ejecting the drive after you are done using it closes it and the data lives 100% secure in the cloud.

Getting bent because Dropbox only gives you 50% security is rather dumb. Anyone at all has to assume that it maxes out at 50% irrespective of what Dropbox claims. If you are smart and secure your own effects, then you’ve nothing to worry about and can get over this silly thing without a single thought. Makes sense to me.

Robin Hood's Barn

Yesterday I attended a meeting with other like-minded individuals and this merry band of people got to discussing password management. There are a lot of different (and all equally valid) ways of managing your passwords and as I listened to some of these people describe their solutions it struck me, again, just how good I really do have it. I have to admit that once I switched over to 1Password and integrated it with Dropbox I’ve been spoiled rotten. The solution is such a perfect match that I stopped thinking about password management altogether, freeing me to concentrate on other things.

Then I heard about some of the things that my work peers have elected to do. One of them manages it with a password-protected Excel Spreadsheet and then uses Sysinternal’s SDELETE program to securely delete the file after he’s done using it. I sat there, stunned as I followed his description of the procedure that he has to follow and grinning-on-the-inside as others around the table brought up a series of criticisms of his procedure and pointing out pitfalls and the like. I sat back marvelling at 1Password, how I didn’t have to worry about any of this, and I discovered in that moment a hidden value to 1Password that just reinforces the perception of value that product has for me – I don’t have to think about this stuff anymore! It saves me time, brainpower, and attention-span. Just for that I couldn’t imagine not having 1Password in my digital life.

All along this meeting I heard comments peppered throughout that all had to do with a paranoid fear of security loss by taking advantage of cloud services. This isn’t the first time I’ve come across this, it was the central axis that featured prominently in my Webmail Plus v. Google argument that I so spectacularly lost so many moons ago. People fear the cloud. They fear what these companies will do with the data once it’s entrusted to their care. This has always mystified me and left me speechless. Now, don’t get me wrong here, I’m not saying that it’s wise to simply put 50,000 Social Security Numbers in a plaintext file and send them right up to Dropbox, hell, I wouldn’t do that with Amazon S3 service or any other provider for that matter. But what I would do, and perhaps this is what boggles my mind, that people don’t already do this, is encrypt the data using AES. With the data in this format, even if the file security is compromised, without the password, what they have is just as good as noise.

This is where 1Password is great, the central database file is encrypted using AES, so I can put it up on Dropbox and then access it from every device I use that can reach the Dropbox service! This has saved me innumerable hours and a world full of worry. Even if one site is compromised I don’t have to worry because each site has its own unique 16 character random password assigned to it and managed through 1Password. I don’t even care if a site forces me to regularly change my password, because every new password will be a random 16 character entry from the password generator that is already in 1Password. I can’t express how much time, energy, and attention-span I’ve been able to save with using this product. When something like 1Password is built, and built well, I can’t help but rave about it. Everyone should be using this software, it would make everyone so much more secure.