tech

  • Chrome’s incognito mode is anything but – allegedly

    Steve WoodsLanguage, Media, Open Source, Privacy, Security, Tech

    Google Chrome iconGoogle Chrome is a cross-platform web browser first introduced in 2008. Based largely on the open source Chromium browser, perhaps the best description for it is proprietary freeware.

    French IT news website Le Monde Informatique reports that a federal judge in California is examining complaints against Google alleging that the company is tricking users into believing that their private life is protected when using the browser’s incognito mode. The lawsuit which was initiated before the North California District Court more than 2 years ago by 5 users is now awaiting a more recent petition from these plaintiff in a class action. One of the complaints concerns Chrome users with a Google account who accessed a non-Google website containing Google tracking or advertising code and who were browsing in incognito mode; a second covers all users of Safari, Edge and Internet Explorer with a Google account who accessed a non-Google website containing Google tracking or advertising code in private browsing mode. According to legal documents first disclosed by Bloomberg, Google employees joked about the browser’s incognito mode and the fact that it was not really private. They also took the company to task for not having done more to provide users with the privacy they though they were enjoying.

    Judge Yvonne Gonzalez Rogers, who presides over the United States District Court for the Northern District of California, will decide whether the tens of thousands of users of Chrome’s incognito mode can be grouped together to seek statutory damages of $100 to $1,000 per violation, which could potentially increase the fine to over $5 bn. The definition of the word incognito is to disguise or conceal one’s identity. The confidentiality settings of web browsers are intended to delete local traces of sites visited by a user, as well as web searches and information provided when filling in online forms. Simply put, private modes such as incognito are not supposed to track and record data from web searches and sites visited by users. Google is also facing proceedings linked to user confidentiality from the justice ministers and public prosecutors of several federal states including Texas, the District of Columbia and Washington. Earlier this month Google settled a lawsuit filed by the attorney general of Arizona for $85 mn. Initially filed in June 2020, the class action was asking for at least $5 bn., accusing Google of surreptitiously collecting data on what people were viewing online and where they were browsing despite using private browsing mode. Lawyers for the plaintiffs say they have a large number of internal Google emails proving that managers have known for years that private browsing mode does not do what it claims. When a user chooses to use this incognito mode, Google’s browser is supposed to delete browsing history and cookies automatically at the end of a session.

    Data sold for advertising purposes in auctions

    The plaintiffs, who are Google Account holders, alleged that the search engine collected their data, distributed it and sold it for targeted advertising through a real-time auction system (RTB). LThe plaintiffs allege that even in incognito mode, Google can see what sites Chrome users are visiting and collect data by means which include Analytics, digital fingerprinting techniques, concurrent applications and processes on a user’s device and AdManager. The latter is a Google service enabling businesses to distribute and create web, mobile and video advertising reports for a company.

    According to one report, more than 70% of all website use one of more of Google’s services. More specifically, the plaintiffs allege that every time a user with private browsing mode active visits a website running Analytics or AdManager, the search giant’s software scripts on the site surreptitiously order the user’s browser to send a secret separate message to its servers in California. “Google learns exactly what content the user’s browser software was asking the website to display, and it also passes a header containing the URL information of what the user viewed and requested online. Device IP address, geolocation data and user ID are all tracked and logged by Google”, according to one report in the lawsuit. “Once collected, this mountain of data is analyzed to build digital records on millions of consumers, in some cases identifying us by name, gender, age, and medical conditions and political issues we researched online”, the lawsuit claims.

    Truly private browsing results in loss of revenue

    In March 2021, a California judge denied 82 motions by Google’s attorneys to end the lawsuit and ruled against the company, allowing it to proceed. In July that year the company was sentenced to pay almost one million dollars in legal fees and expenses as a penalty for not having disclosed evidence concerning the lawsuit in a timely manner.

    This week a spokesperson for Google told the Washington Post it had been frank with users about what its incognito mode offers in terms of privacy and that the plaintiffs “deliberately misrepresented our statements”. Jack Gold, senior analyst at J. Gold Associates, said the company makes the majority of its revenue by tracking everyone and selling ad space. “If they’re really creating a completely private browsing experience, then the revenue stream is gone,” he said. “So, I suspect there is a ‘balancing act’ going on internally as to where the borders are around privacy vs. tracking. No company builds a free browser without being able to generate revenues somehow”. The plaintiffs in the case said they chose “private browsing mode” to prevent others from learning what they’re viewing on the internet. When it comes to using Google Chrome and other browsers, “let the user beware,” Gold said. “You have to trust the maker to take care of your privacy, but it’s not always in their best interest to do so”.

  • Free digital workshops for over 55s

    Steve WoodsBristol, Tech

    Starting this Friday, Eastside Community Trust is organising a series of digital skills workshops for the over-55s from 12.30 to 2.30 pm as part of the Eastside Connect project.

    Eastside Connect is a peer-to-peer project that works with people over the age of 55, who live in Easton or Lawrence Hill. The project strives to harness the skills and experience both lived and knowledge base to enable participants to share and discuss their desires for what older people want to see and do in the area they live, either individually or collectively. We have a variety of activities, all asked for by those who attend such as “Cuppa to Connect” a time for tea and a natter, “Come dine with us” – a community meal and more recently “East Mingle” at Trinity Arts creating a way to connect through dance, music and discussion.

    Digital workshops poster

    The sessions are free and there’s the added lure of free refreshments, so if you’re free on Friday, an apprentice or fully qualified pensioner come along with your device – be it laptop, tablet or mobile phone – and problems and the delightful Gary and your ‘umble scribe will provide loads of useful advice and try to sort them out for you! 😀

  • Introducing Ubuntu Pro beta

    Steve WoodsLinux, Open Source, Security, Tech

    Ubuntu logoCanonical is currently offering a public beta version of Ubuntu Pro, giving Ubuntu Linux users extended maintenance and security compliance for software packages ranging from the Node.js runtime to Python 2 and Rust. Security cover will be extended for average and high common vulnerabilities and exposures (CVE) for thousands of applications and toolchains including Ansible, Apache Tomcat, Apache Zookeeper, Docker, Drupal, Node.js, Puppet, Python 2, Rust and others.

    A free thirty days trial is available for businesses. Ubuntu Pro is available for data centres and workstations. A free level is being offered for small-scale personal use (up to 5 machines).

    Since the launch of Ubuntu LTS with 5 years support for the main operating system, businesses have asked the supplier to cover a larger area of the open source landscape under private commercial agreements. These benefits are now offered free of charge to anyone with a free personal subscription to Ubuntu Pro. This may also be combined with 24/7 enterprise level for the Ubuntu operating system.

    Ubuntu Pro is available for all Long Term Support (LTS) versions of Ubuntu from version 16.04 LTS upwards. The standard Ubuntu Pro subscription covers security updates for all Ubuntu packages. In addition, Canonical’s Ubuntu Advantage for Infrastructure subscription has been renamed Ubuntu Pro (Infra-only) with no change in its price or range. The Infra-Only subscription covers the base operating system and the private cloud components required for large-scale and bare metal and excludes wider cover for applications. Subscribing to Ubuntu Pro costs US $25 dollars per year excl. tax for one workstation or US $500 dollars per year for a server. On public clouds Ubuntu Pro costs some 3.5% of the average cost of the underlying processing environment.

  • Amazon Workspaces offers Ubuntu virtual desktops

    Steve WoodsLinux, Open Source, Tech

    The AWS blog writes that the company loves to give its customers choices: the choice of infrastructure to deploy their workloads, store their most important data, or the operating systems for their virtual desktops.

    To this end it has started offering Ubuntu virtual desktops, based partly on the premise that “Ubuntu is the most widely used operating system among professional developers (66 percent Ubuntu, 61 percent Windows, and 57 percent macOS)”.

    AWS Ubuntu virtual desktop

    To date your correspondent has seen both Ubuntu’s Unity desktop – as shown above – and the lightweight Xfce desktop as an alternative.

    It has been a quip of open source enthusiasts that next year will be the year of Linux on the desktop (instead of the Beast of Redmond’s ubiquitous operating system.

    AWS is now demonstrating that 2022 is the year of the Linux desktop on someone else’s computer. 😀

  • EU open source repository now online

    Steve WoodsOpen Source, Tech

    EU flagThe EU Commission has launched the code.europa.eu open source repository with over 100 projects to promote open software development, heise reports.

    The EU Commission has started operations of its open source development platform code.europa.eu without much ado. The Director General for Informatics, Veronica Gaffey, announced the launch of the open source repository two weeks ago at an Open Forum Europe conference two weeks ago. The platform should facilitate “the collective development, exchange and reuse of solutions for European public services”.

    In Gaffey’s words: “We created a central code repository, one which I can now announce publicly. You will find our software development platform at code.europa.eu. So, code.europa.eu facilitates the open development of software projects from the Commission as well as the other European Union institutions. We start today with just over 100 projects and 150 developers, but the OSPO is busily onboarding others.”. The focus is on projects by the Commission and other EU institutions, but also “in Bulgaria, the Czech Republic, Estonia, France, Germany, Italy, the Netherlands and elsewhere in the EU”.

    In December last year we got rid of an outdated, complicated, bureaucratic legal process that stopped us sharing open source. Now Commission projects that wish to share their software with others are free to do so,” Gaffey explained.

    The European Public License (EUPL) 1.2 should be used as the main licence for new source code on the platform, according to EU open source news site Joinup. The EUPL has been adapted to European law and is compatible with version 2 of the more well-known GNU General Public License (GPL). Code added to existing projects will use the same license as previously, such as the Dynamic Discovery Client, which uses the GNU Lesser General Public License (LGPL).

  • Audacity 3.2 released

    Steve WoodsLinux, Open Source, Tech

    When it comes to open source audio editing software, Audacity is the software package your ‘umble scribe has been using and recommending to others for over a decade and a half.

    The latest minor point release for the software – to version 3.2 – nevertheless brings some major new features, including real-time effects. Furthermore, the package will now run natively on Apple’s Silicon Macs, according to German IT news website heise, whose headline rates it as ‘Genuine competition for commercial audio software‘.

    Audacity was first released in 22 years ago and since then it has made major strides towards becoming a fully-fledged end-to-end production tool for everyone who works with audio, from multi-track recording and editing to podcast production, i.e. a complete digital audio workstation (DAW).

    The new version press release states that the Audacity team has been working hard to empower audio creators with the following highlights of this release: real time editing capabilities, VST3 plugin support and sharing, the latter via Audacity’s new audio.com sister service.

    For a full list of changes in Audacity 3.2, read the release notes.

    Audacity is available for download for Linux, Mac and Windows and your correspondent is awaiting the new version’s arrival in the Debian GNU/Linux software repositories.

  • Surveillance for corporate profit

    Steve WoodsBristol, Language, Oddities, Privacy, Tech

    Automatic Number Plate Recognition (ANPR) surveillance seems to be on the rise since your ‘umble scribe first reported on its use by B&NES for access control to the council’s rubbish tips recycling centres some years ago.

    It’s now being used by parking management companies to catch drivers who overstay their welcome in private car parks, as shown by the example below spotted in central Bristol today outside the snappily named Double Tree by Hilton hotel on Redcliffe Way.

    Sign warning of use of ANPR to control car park use
    Somebody’s watching you…
    The hotel car park in question is ‘managed’ by Smart Parking, whose website boasts the company is ‘Reinventing the Parking Experience’. The manner in which Smart Parking is ‘reinventing’ parking (minus the experience. Ed.) can best be described by your correspondent as ‘Orwellian‘.

    The adjective Orwellian is no exaggeration if one peruses the company’s marketing brochure to glean how ANPR is used. It states:

    Smart Parking’s automatic number plate recognition (ANPR) / license plate recognition (LPR) parking system is a simple, efficient and cost-effective way of off-street car park management.
    Cameras placed at entry and exit points take a timed photo of the number plate of each vehicle entering and exiting the premises. Customers then simply pay and walk, using their license place as identification. We can also configure sites to have validated parking which can include permit only, staff only, free limited time parking and definable grace periods, to name a few.
    As with our other solutions, SmartANPR/LPR work with the SmartCloud platform to deliver occupancy, stay rates and enforcement efficiency reporting for car park management and future planning.

    Note the American English usage of license.

    Of course, for any users who outstay their welcome, the company wants to make a profit with its penalty charges (note to any passing journalists, despite your constantly referring to these charges in your copy as ‘fines‘, they are in fact invoices; only the judicial authorities can impose fines. 😀 Ed.) and so needs to obtain details of the vehicle’s keeper from the DVLA. The DVLA is more than willing to divulge this information for a fee, as confirmed by the answer to a Freedom of Information Act request from 2012.

    The law allows the DVLA to disclose vehicle keeper information to those who can demonstrate a reasonable cause for requiring it. Reasonable cause is not defined in legislation but the Government’s policy is that it should relate to the vehicle or its use, following incidents where there may be liability on the part of the driver.

    The DVLA also charges a fee for the disclosure of this information, as the response further clarifies:

    The fees levied by the DVLA for Fee Paying Enquiries are set to recover the costs of processing requests and ensure that the cost is borne by the requester and not passed onto the taxpayer.

    Even so, the agency has fallen foul of the Information Commissioner’s Office for “not using the correct lawful basis to disclose vehicle keeper information“, as The Guardian reported a few months ago.

    Your correspondent feels an urge to submit another FoI request for the DVLA to enquire about the amount of money received by the agency for this service, but has more than a suspicion such a request would be refused on the grounds of commercial confidentiality.

  • LibreOffice 7.4 released

    Steve WoodsLinux, Open Source, Open Standards, Tech

    The release was announced today of LibreOffice 7.4 Community, the latest version of the free and open source office suite. It is available immediately for download for Linux, MacOS (Apple Silicon and Intel processors) and Windows.

    LibreOffice 7.4 banner

    The new release comes packed with many new features and improvements.

    GENERAL
    • Support for WebP images and EMZ/WMZ files
    • Help pages for the ScriptForge scripting library
    • Search field for the Extension Manager
    • Performance and compatibility improvements
    Writer (Word processor)
    • Better change tracking in the footnote area
    • Edited lists show original numbers in change tracking
    • New typographic settings for hyphenation
    Calc (spreadsheets)
    • Support for 16,384 columns in spreadsheets
    • Extra functions in drop-down AutoSum widget
    • New menu item to search for sheet names
    Impress (Presentations)
    • New support for document themes

    The new features are summarised in the following video.

    LibreOffice 7.4 provides a large number of improvements and new features targeted at users sharing documents with MS Office or migrating from MS Office: such users should check regularly for new LibreOffice releases since the development progress is so fast, that each new version offers dramatic improvements compared with its predecessor.

    LibreOffice provides the highest level of compatibility within the office suite market segment, with native support for the OpenDocument Format (ODF) – beating proprietary formats for security and robustness – to superior support for MS Office files, to filters for a large number of legacy document formats, thus returning ownership and control to users.

    LibreOffice for Business

    For business deployments, TDF strongly recommends approaching the LibreOffice Enterprise family of applications from its partners – for desktop, mobile and cloud – with a large number of dedicated value-added features and other benefits such as SLAs; see the dedicated business page for details.

  • Happy 25th birthday, GNOME

    Steve WoodsLanguage, Linux, Tech

    GNOME's 25th anniversary banner

    Yesterday the GNOME Foundation announced the happy news that the project had reached the venerable age of 25 years old, with special thanks to its founders, Miguel de Icaza and Federico Mena Quintero, plus its contributors and supporters over the last quarter of a century.

    As is fairly common within the technology world, the GNOME name is an acronym for GNU Network Object Model Environment.

    In its lifetime,GNOME has the default desktop environment of many major Linux distributions, including Debian, Endless OS, Fedora Linux, Red Hat Enterprise Linux, SUSE Linux Enterprise, Ubuntu and Tails; it is also fulfils the same role for Solaris, a Unix operating system.

    GNOME42 desktop environment

    What began as a two-person project has certainly grown and flourished over the years, attracting support from not only volunteers but major players in the free and open source world such as Red Hat. Furthermore, there’s a new, special commemorative website to visit too: https://happybirthdaygnome.org/.

    Many happy returns!

  • DuckDuckGo blocks Microsoft trackers

    Steve WoodsPrivacy, Security, Tech

    French IT news site Le Monde Informatique reports that DuckDuckGo has decided to block Microsoft’s trackers in its mobile browser applications and browser plug-ins in an effort to extend its approach to privacy protection. It had already been criticised at the start of the year on the matter.

    Screenshot of DuckDuckGo search engine

    Protecting internet users from tracking and protecting their anonymity is not simple. DuckDuckGo is part of this move and was very upset to find out that as part of its agreement with the Bing search engine, Microsoft had given the green light for user tracking. This is no longer the case since from that date onwards DuckDuckGo’s CEO, Gabriel Weinberg, has stated that blocking the loading of scripts on websites by the browser was extended to Microsoft’s scripts in DuckDuckGo browser applications for iOS and Android and browser extensions (Chrome, Firefox, Safari, Edge and Opera) and that beta applications will follow next month.

    DuckDuckGo is attempting to block tracking scripts from search engines and sites such as Facebook, as well as other types of tracking scripts or software. It uses what it calls third-party tracking loading protection to prevent these third-party scripts or cookies from being loaded into the browser. If they did, they could track movements on the web and build a profile of the user, their preferences, etc. If other browsers and browser plug-ins also enable users to protect their privacy, DuckDuckGo has made privacy its priority.

    Delayed neutralising

    Mr Weinburg’s decision was taken after the discovery at the start of the year by security researcher Zach Edwards that DuckDuckGo was blocking trackers from Google and Facebook, but was allowing some of Microsoft’s trackers via Linkedin and Bing. The discovery was then reported by BleepingComputer. “Previously, we were limited in how we could apply our third-party tracker download protection to Microsoft tracking scripts due to policy requirements related to our use of Bing as the source of our private search results,” Weinberg explained, adding that, “We’re glad that’s no longer the case. We didn’t have and don’t have similar restrictions with any other company.”

    DuckDuckGo still has an advertising relationship with Microsoft, which it will maintain. Clicking through on advertisements on DuckDuckGo is anonymous and Microsoft has undertaken not to profile DuckDuckGo users. If Microsoft continues to save the user’s link, it will not associate them with a profile. On an updated support page, DuckDuckGo has provided a summary of everything which its its browser authorises and does not authorise, as well as providing details of web tracking protection.

Posts navigation