Bonum Certa Men Certa
GNU/Linux and Sharing in the Public Sector | Applications and Instructionals: November 14th

In This Age of Fog/Cloud (Surveillance-Friendly) Computing, Can OwnCloud Be Trusted?

Spooks love the fog as it lets them spy on people without the people knowing about it

Fog



Summary: Looking at the problems with "cloud" (fog) computing, even when it is driven by Free software and is self-hosted

Fog Computing is one of the most disturbing emerging trends. It's often proprietary by design (no access to source code) and it is a lot worse because it's remotely controlled (no control over the binaries, either). Red Hat's embrace of OpenStack represents a strategic shift wherein Red Hat facilitates the deployment of Fog Computing by other companies [1]. It's not Red Hat which does the violations, but oftentimes the companies which Red Hat helps will go on violating people's privacy and dignity (Amazon for instance).



OpenStack is one of those cases where one has access to source code, but one cannot verify that this code is actually what's executed as there is no access to the binaries (for the client side). Microsoft partners like Citrix are also embracing OpenStack [2], which sure enjoys growing influence [3]. It's better to use something that's Free/Open Source than something that's proprietary, but when the code runs remotely, it is still far from freedom-respecting, unless of course it's self-hosted, in which case NSA surveillance of OpenStack instances (possible [4]) is getting hard.

There is only one project that I know fulfills the above needs. It is the Germany-based OwnCloud [5,6,7], which has roots in SUSE (the key staff). The problem is, this project's code has had a lot of vulnerabilities which basically would be easy for the NSA to exploit and gain access to servers. MEGA is said to be privacy-respecting, but it is proprietary and Flash-based. This option too has been found to have security vulnerabilities.

So the bottom line is this: keep your sensitive data on the local disk, stored by a reliable system like GNU/Linux. This data should not shipped without encryption (e.g. SSH) down a wire unless it only moved locally (within local network or hub). In this age of personal targeting, politically-motivated smears, espionage, etc. we need to protect our personal data. If we didn't have anything to hide, we wouldn't mind uploading our entire hard drives to be made publicly accessible by all, right? Well, not really. Apparently, even if you're doing nothing wrong, you still need privacy. The NSA doesn't give a damn about that.

Related/contextual items from the news:



  1. Red Hat Delivers More Tools, Services for Enterprise OpenStack
    Red Hat has a sterling reputation for advancing and supporting Linux in the enterprise, but the company is structuring much of its future growth around cloud computing, and OpenStack in particular. The company has recently announced the Red Hat Enterprise Linux OpenStack Platform, an Infrastructure-as-a-Service certification program for OpenStack, a deepening partnership with Canonical and Ubuntu surrounding the new Havana release of OpenStack, and more.
  2. Citrix Embraces 'Anyness' and the OpenStack Cloud
    VIDEO: The general manager of Citrix's cloud efforts explains how his firm both supports and competes against the open-source OpenStack cloud.


  3. OpenStack Summit Highlights Cloud's Global Influence
    The open-source OpenStack Foundation held its semiannual Design Summit here Nov. 5-8, discussing all manner of topics related to the cloud. As the first OpenStack Summit held outside of the United States, the event had a strong emphasis throughout on the global nature of the OpenStack cloud platform and, more specifically, the high levels of interest, participation and deployment of the platform in China. According to data released at the Hong Kong event, China is now home to more OpenStack developers than anywhere else in the world. China is also home to some of the largest OpenStack deployments on Earth, including one with Qihoo 360, a Beijing-based online security and mobile vendor. Qihoo 360 is using OpenStack to provide cloud-based security for 450 million user


  4. OpenStack Cloud Vendors Vigilant in the Face of NSA Snooping
    The Edward Snowden revelations about NSA snooping in the cloud are not having an impact on OpenStack cloud vendors, including Rackspace and Dreamhost.


  5. Why I love OwnCloud: answer to Dropbox lock-in
    I recently covered the release of Dropbox platform and my thoughts on the impending cloud storage lock-in. I was also fortunate enough to run across what the guys over at NimbusBase are doing over the weekend. They seem to be the answer to the open API for mobile and web applications, providing a cross-cloud storage layer and a GPL reference implementation while they do it. I also penned a few thoughts on their model.


  6. Own Your Data with OwnCloud
  7. Pure open source, open standard based Google Docs, iWork, Office 365 competitor arrives


GNU/Linux and Sharing in the Public Sector | Applications and Instructionals: November 14th

Recent Techrights' Posts

Father of GNU Giving Keynote Talk Today, Father of Linux Collaborating With Linus Tech Tips (LTT)
Some time soon we can expect Linus Tech Tips (LTT) / Linus Media Group / Linus Gabriel Sebastian to produce something with Torvalds
LLM Slop is an Addiction One Can Quit
Sites that crossed over to "the dark side" (slop) can still return, and even fully regain the trust lost by betraying people with 'botspew'.
BILD is Apparently Covering Up Cocaine Use at Europe's Second-Largest Institution, the European Patent Office, as It's Based on Germany
Journalist contact details
 
NHS Data Breach Caused by Proprietary Software, as Usual, The Register MS Blames "Hackers" and "Cybercriminal Gang"
Nothing will get solved unless we have a rethink and media quits using the "hacker" narrative, which shifts blame from the holes to those who merely exploit them
IBM is Vanishing (First Moving, Then Going Away Completely)
Salary reduction is only the first step
Links 16/11/2025: Japan-China Tensions Grow, Surveillance Giant Google Checked for Breach of the Digital Markets Act (DMA)
Links for the day
Links 16/11/2025: Censorship Battles and Margaret Sullivan Speaks
Links for the day
German Media and German Politicians: Working for the Public or Manipulating the Public?
The "common person" does not have printing presses
Informing the Public of Suppressed Facts
We are all in this together
Canadian Linus Meets Finnish-American Linus
LTT does have a very large audience, which it can steer away from Microsoft and Windows
The UK's Online Safety Act (OSA) Discourages Technological Entities, Including Free Software Projects, Being Based in or Near the UK
When it comes to IRC hosting, we never had any serious speech restrictions imposed upon us by the UK
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, November 15, 2025
IRC logs for Saturday, November 15, 2025
Gemini Links 16/11/2025: Emacs Font Fun and UI x TUI x CLI
Links for the day
Flagging or Labelling LLM Slop Meaningfully to Discourage the Practice
We're still refining the annotation for better contrast
Techrights Site Search Pushed to 'Stable'
we've just added it to the navigation menu and footer
Situation Publishing's DevClass (Sister Site of The Register MS, Run by MS Tim) Has Been Abandoned, Microsoft's MS Tim Now Interjects Anti-Linux Directly Into The Register MS
Not only does this sell Microsoft; it's also googlebombing - as before - the real "maui" (or "MauiKit" in Linux).
Many IBM Workers to Become Unemployed a Few Weeks - Maybe Just Days - Before Christmas
as one last humiliating exercise IBM pimps/trots them out in social control media, telling "happy" stories
Slopwatch: LinuxSecurity, WebProNews, and Linux Journal (Slopfarms)
More fake articles about "Linux"
Links 15/11/2025: Openwashing of Kubernetes and Austerity Planned for Canada
Links for the day
Links 15/11/2025: "Small Web, Big Voice" and China Cracking Down on Slop
Links for the day
Links 15/11/2025: Science, Conflicts, and International Politics
Links for the day
Annus Horribilis at the European Patent Office (EPO)
The article explains how the EPO "Cocainegate" scandal is turning 2025 into an Annus Horribilis for Campinos
Links 15/11/2025: Latest in "Component Abuse Challenge" and Qt Keeps Promoting LLM Slop
Links for the day
Gemini Links 15/11/2025: Egoism, Misunderstood Universe, DeX, and "Why desktop Linux is growing"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, November 14, 2025
IRC logs for Friday, November 14, 2025
Richard Stallman Talk Tomorrow in Ethereum Cypherpunk Congress 2
It's not clear if a livestream of some kind will exist
Many "Last Days" at IBM on Allegedly the "Last Day" for IBM to RA People This Quarter
"Last day" is "social media code" for "got laid off", more so at IBM because they compel people to act like it's a happy departure with gratitude, photos and so on
Slopwatch: Almost a Majority of Google News is Now Slopfarms (Fake Sites, Fake Articles)
Google News is noise
Gemini Links 14/11/2025: Boredom, "Twenty Percent Cooler", and Moving From Windows to Artix
Links for the day
Links 14/11/2025: YouTube's Trap for Publishers, Lack of Accountability a Growing Legal Matter/Concern
Links for the day
Many Times in the Past We Said That Microsoft Lunduke Was Becoming a Spokesperson/Voice for - and Occasionally Weaponising - 4Chan. He's Proving Us Right This Week.
Stay away
The Register MS is Profiting From Pyramid Schemes Run by Americans
We cannot help but feel disgusted by what this publisher became
IBM: Hiring, Then Disposing of, Unpaid or Low-Paid European Staff to Spread or Play Up Buzzwords and Hype
Like Google With "Summer of Code", this seems like a low-cost marketing stunt more than anything substantial
Casual Reminder That We Also Publish GNU/Linux Stories and News Coverage in Tux Machines
Without trust in our robustness (including fearlessness, not just success in protecting stories and sources) we'd not have come this far, nor would I devote my life to it
The Europe Conversation: The EPO Has Cocaine at the High-Level Management and Isn't Denying It
Now we plan to ensure the matter is properly documented in European press
Links 14/11/2025: Goddard Space Center Abused by the White House, Jeffrey Epstein Scandal Expands (Cheetos Need Distraction)
Links for the day
Corporate Media Helps IBM Relay Vapourware (Misinformation/Fake News)
They compensate with words for a lack of compelling products
Hacking on Recipes
Maybe, in due course perhaps, we can also release some of our own cooking recipes or "forks"
Web Searches Far Too Polluted, Gamed by LLM Slop and "Plagiarised Information Synthesis Systems" (PISS)
old articles are already getting difficult to find in mainstream search engines, even if they are still online
Privacy-respecting Metasearch Engine SearX/SearXNG Still Jailed by Microsoft
The official site and code still sadly controlled by Microsoft
"AI" is a Lie. It Always Was. What They Call "AI" Is Not.
This MSM does no favours to the economy
Our First Week of Our Twentieth Year
My wife and I have had a very productive week here and in Tux Machines
Links 14/11/2025: Sleep Research, France to Suspend Pension 'Reform' Law, and Linux Foundation's Latest Openwashing
Links for the day
Gemini Links 14/11/2025: KDE vs XFCE and Leaving the Web
Links for the day
Google Admits It Lost Control of Slop (While Google Itself is Selling Slop, Currently Under the Name "Gemini" Instead of "Bard")
Slop is nothing to be celebrated
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, November 13, 2025
IRC logs for Thursday, November 13, 2025
Mozilla Handed Over Control Over Firefox to Microsoft, Now Firefox is Preloaded With Microsoft Spyware and It's Proprietary
Who would still want to download Firefox?
Slopwatch: LinuxSecurity, Brian Fagioli, and WebProNews
becoming a slopfarm is a site's suicide
"Sponsored Posts" in The Register MS
That's The Register MS in 2025
IBM RAs in India (Apparently)
IBM is a bad place to work
Another Richard Stallman Talk in Two Days
His talk will be a remote talk, as he won't be travelling to Argentina