Comments on: Google Calendar Nightmare Release

By: 谷歌治印 Google Blogoscoped 中文版 » Google日历安全须知

Thu, 05 Jul 2007 03:10:01 +0000

[...] Startup Meme和Chris Pirillo报告：很多人通过“username password�?等关键�?�?�以�?�索到Google日历事件。Google有两个选项，一个是默认的�?共享，一个是共享。显然，当用户添加新事件的时候，往往忘了这个日历是公开的。�?�能Google需�?添加更多的图标�?��??醒用户，或者添加新事件的时候�??醒一下。这�?是Google日历的弱点，类似于在�?�客上�?�布秘密信�?�，当然�?�以被�?�索到了。 [...]

By: Startup Meme » LifeLock Raises $6 Million From Kleiner Perkins To Protect Your Identity

Fri, 27 Apr 2007 18:05:30 +0000

[...] was at the center of a controversy, whereby important Corporate data got leaked as a result of users storing their ids and passwords in the calendar that were made [...]

By: Login Credentials in Public Google Calendars « Know what is happening throughout the world

Tue, 24 Apr 2007 05:56:03 +0000

[...] Startup Meme and Chris Pirillo report that quite a few people have made login credentials of theirs public via Google Calendar event descriptions, which can now be found by searching for public events for e.g. “username password�?. When you create a calendar with Google, you have the options “do not share with everyone�? (default) and “share all information on this calendar with everyone�? (which additionally triggers a confirmation dialog). However, when people add certain events to public calendars, it may be that they’ve forgotten they once made the calendar public. Maybe Google needs to put a more visible icon next to public calendars as a reminder, or always trigger a confirmation when you add an event to a public calendar, but this is not a Google Calendar security vulnerability – it’s user misconfiguration, similar to when you e.g. create a blog post with information that ought to be secret, and then someone searches Google for “password username�?. [...]

By: Google Calendar Passwords in The Open, Google Antitrust case, and more Google News

Mon, 23 Apr 2007 20:48:30 +0000

[...] Google Calendar Nightmare Release As it turns out that there is a huge population of users, who create a reminder for an event and leave the login and credentials in the reminder as well. This reminder is often set to public viewing to share the event with friends or colleagues, not knowing that it could be viewed by anyone on the face of the planet. Want to view some passwords? just type “user password�? in the search box and click “Search Public Events�? button. Offcourse you can try out other wicked options to see what turns up. [...]

By: Google Calendars: Login Credentials & Security Notice » D’ Technology Weblog: Technology News & Reviews

Mon, 23 Apr 2007 20:40:47 +0000