If they are serious, they should buy Symantec Encryption Desktop (formerly PGP Desktop) from Symantec and open source the full version of that. It has a decent UI, works well with Outlook and Thunderbird, and does well on Windows, OS X, and Linux. That would give decent security on the hard disk level, file container, and individual file level. Even directories can be encrypted, CFS/EncFS like.
When performing maintenance on Sundays, don't turn off passwords for your entire userbase, DROPBOX.
Bonus tip: Hiring Condoleeza Rice told me everything I need to know about you jackasses. If I want to use cloud storage, every other vendor in the world doesn't employ war criminals. So it's easy to choose a vendor who doesn't upset my conscious.
Dropbox is the last company on earth that should be trusted with anything related to security or encryption. They have proven to be incompetent regarding security (and programming in general, for what it's worth) and there are countless alternatives on the market that are better than Dropbox. And yes, hiring Condoleeza Rice does not make them more trustworthy either. Having her in the board is like appointing Dick Cheney as a human rights adviser.
What they need to do is implement client-side encryption before it gets uploaded. Sure, we can use something like EncFS to let Dropbox host only files I've already encrypted, but other cloud-storage companies like SpiderOak have written themselves out of access to my file contents.
Dropbox should open-source its desktop client to prove it does what it is supposed to.
If they are serious, they should buy Symantec Encryption Desktop (formerly PGP Desktop) from Symantec and open source the full version of that. It has a decent UI, works well with Outlook and Thunderbird, and does well on Windows, OS X, and Linux. That would give decent security on the hard disk level, file container, and individual file level. Even directories can be encrypted, CFS/EncFS like.
When performing maintenance on Sundays, don't turn off passwords for your entire userbase, DROPBOX.
Bonus tip:
Hiring Condoleeza Rice told me everything I need to know about you jackasses. If I want to use cloud storage, every other vendor in the world doesn't employ war criminals. So it's easy to choose a vendor who doesn't upset my conscious.
assmonkeys
Why is OP modded Flamebait? He's right!
Dropbox is the last company on earth that should be trusted with anything related to security or encryption. They have proven to be incompetent regarding security (and programming in general, for what it's worth) and there are countless alternatives on the market that are better than Dropbox. And yes, hiring Condoleeza Rice does not make them more trustworthy either. Having her in the board is like appointing Dick Cheney as a human rights adviser.
People who honestly
What they need to do is implement client-side encryption before it gets uploaded. Sure, we can use something like EncFS to let Dropbox host only files I've already encrypted, but other cloud-storage companies like SpiderOak have written themselves out of access to my file contents.