this post was submitted on 07 Jan 2025
3 points (100.0% liked)

Privacy

0 readers
42 users here now

Everything about privacy (the confidentiality pillar of security) -- but not restricted to infosec. Offline privacy is also relevant here.

founded 1 year ago
MODERATORS
[email protected]
3
I'm checking out various "personal knowledge management" tools in a sandbox to see if it be an upgrade my ragtag collection of text file-based notes. (fedia.io)
submitted 3 weeks ago by [email protected] to c/[email protected]
35 comments fedilink hide all child comments
 

I'm checking out various "personal knowledge management" tools in a sandbox to see if it be an upgrade my ragtag collection of text file-based notes.

First candidate is #Logseq, supposedly "privacy-first".

How #privacy friendly is something based on Electron (aka Chrome)? Debatable, but then they also do this:

  1. Have "Send usage data" on by default
  2. Start with an example page that embeds a YouTube video, and accepts all cookies

tcpdump and mitmproxy go wild when starting the program.

Shows that the "Send usage data and diagnostics to Logseq" setting is enabled by default.
Shows the services being contacted by Logseq over HTTPS right after starting it for the first time. Hosts that are being contact: www.youtube.com, googleads.g.doubleclick.net, jnn-pa-googleapis.com, play.google.com, app.posthog.com, o416451.ingest.sentry.io

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 3 weeks ago* (last edited 3 weeks ago) (1 children)

Tested the fourth PKM: #SiYuan (https://b3log.org/siyuan/), which is pretty similar to Anytype feature-wise.

It's also a product that starts off with saying that it's "privacy-first", supported by what might be the world's shortest privacy policy, which clearly states: "Does not collect user personal information and usage data."

Unfortunately, the Google Analytics and Google Tag Manager scripts that are loaded on start are nowhere mentioned. No warning, no consent question, on by default.

1/n

[–] [email protected] 2 points 3 weeks ago (3 children)

What data is being collected? Mostly details about your machine: OS (name, kernel version), CPU architecture, screen resolution, a unique identifier, but also what's in the title bar of the program window, which can be problematic.

You see, the title of the note you had open when you quit the program last is also in the title bar, which might contain personal information like someone's name, or the name of an illness you have that you are taking notes about.

2/n

[–] [email protected] 2 points 3 weeks ago* (last edited 3 weeks ago) (2 children)

You might feel I'm nitpicking about a possible edge case here, but you are promised privacy.

Without sniffing the network traffic, or going through the source code, you have no idea that your note titles are being sent to Google Analytics. Even the opt-out toggle tells you that no user data is collected.

It's another example of a company (they sell premium services) using "privacy-first" as a buzzword instead of living by it as a guiding principle.

At least there is an opt-out, I guess

3/3

[–] [email protected] 2 points 3 weeks ago (1 children)

Ok then, number 5: the desktop version of #TiddlyWiki, #TiddlyDesktop.

The Chromium wrapper isn't as old as the wiki web software itself but still goes back to 2014.

Standard Chrome traffic and... a lot of calls to googleapis.com. Why? Because it calls the Google spell check API with everything you enter.

All your text is being sent to Google.

I couldn't turn it off and on top of that a dummy API key is used so the API returns an error, meaning the functionality is completely useless.

A screenshot of the page editor of TiddlyWiki in TiddlyDesktop. The contents of the page read: "Secrets" "So I've disabled ""network activity"", surely it won't pass my biggest secrets on to Google, right? ... Right?" It also shows that the "network activity" option has been disabled (I've also tested it with the option enabled, restarting the program, etc. Google's API was still being contacted)
Shows the contents of one of the calls to the Google spell check API. The payload of the call contains the following JSON: { "text": "So I've disabled \"network activity\", surely it won't pass my biggest secrets on to Google, right?\n\n...\n\nRight?", "language": "en", "originCountry": "USA" }

[–] [email protected] 1 points 3 weeks ago (1 children)

@[email protected] I use the Node.js version of Tiddlywiki and see no such traffic. I don't use TiddlyDesktop, though, so can't comment on that.

[–] [email protected] 1 points 3 weeks ago

@[email protected] This is definitely TiddlyDesktop only. It was added because people were missing the spell checking that their browser normally does (https://github.com/TiddlyWiki/TiddlyDesktop/issues/32)

[–] [email protected] 1 points 3 weeks ago

Ok then, number 5: the desktop version of #TiddlyWiki, #TiddlyDesktop.

The Electron wrapper isn't as old as the wiki web software itself but still goes back to 2014.

Standard Electron traffic and... a lot of calls to googleapis.com. Why? Because it calls the Google spell check API with everything you enter.

All your text is being sent to Google.

I couldn't turn it off and on top of that a dummy API key is used so the API returns an error, meaning the functionality is completely useless.

A screenshot of the page editor of TiddlyWiki in TiddlyDesktop. The contents of the page read: "Secrets" "So I've disabled ""network activity"", surely it won't pass my biggest secrets on to Google, right? ... Right?" It also shows that the "network activity" option has been disabled (I've also tested it with the option enabled, restarting the program, etc. Google's API was still being contacted)
Shows the contents of one of the calls to the Google spell check API. The payload of the call contains the following JSON: { "text": "So I've disabled \"network activity\", surely it won't pass my biggest secrets on to Google, right?\n\n...\n\nRight?", "language": "en", "originCountry": "USA" }

[–] [email protected] 1 points 3 weeks ago

You might feel I'm nitpicking about a possible edge case.

But you are promised privacy, and without going through every screen in the options menu, sniffing the network traffic, or going through the source code you have no idea that your note titles are being sent to Google Analytics.

It's another example of a company (they sell premium services) using "privacy-first" as a buzzword instead of living by it as a guiding principle.

At least there is an opt-out, I guess.

3/3

[–] [email protected] 1 points 3 weeks ago

You might feel I'm nitpicking about a possible edge case.

But you are promised privacy, and without going through every screen in the options menu, sniffing the network traffic, or going through the source code you have no idea that your note titles are being sent to Google Analytics.

It's another example of a company (they sell premium services) using "privacy-first" as a buzzword instead of living by it as a guiding principle.

At least there is an opt-out, I guess.