Jump to content

Search the Community

Showing results for tags 'security'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Calendars

There are no results to display.

There are no results to display.

Forums

  • General Discussion
    • Community Announcements
    • Evernote General Discussions
    • Evernote Integrations
    • Evernote Betas
    • Evernote API Discussion
  • FAQ's: Best Answers
    • FAQ's: Best Answers
  • Possible Bugs/Technical Issues
    • General Technical Issues
    • Evernote Business
    • Evernote for Android
    • Evernote for iOS
    • Evernote for Mac
    • Evernote for Windows
    • Web Client
    • Evernote Product Suite
  • Product Feedback/Feature Requests
    • General Feature Requests
    • Evernote Business
    • Evernote for Android
    • Evernote for iOS
    • Evernote for Mac
    • Evernote for Windows
    • Evernote Web Client
    • Evernote Product Suite
  • Evernote Forum Archives
    • Using Evernote
    • General Discussion Archive
    • Product Archives
  • Web Clipper***
  • International Forums
    • Japanese Discussions
    • Brazilian Portuguese Discussions
    • Discussions in Spanish
    • Korean Discussions
    • Traditional Chinese Discussions

Blogs

There are no results to display.

There are no results to display.

Categories

There are no results to display.

There are no results to display.


Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


Subscription

Found 167 results

  1. Hi all, if I post a link on the internet, to an Evernote shard, can it be traced back to me i.e. my Evernote account? Is it completely anonymous?
  2. Hello, I use Evernote desktop application in Windows 7 64 bits and in Android phone. I just found out reading in Evernote Knowledge online help that there's little or no good encryption support on local Evernote databases.. with some people sugesting the use of 3rd partir softwar to enforce encryption. From what I just read I remember 2 main ideas: a) Only use online access and *DONT* install Evernote for Windows. Seems we can encrypt notes by using option "Encrypt Selected Text.." present in menu "Format" of Windows Evernote desktop application, but.. seems its not strong enough, since it seems can be cracked in just couple seconds. I store sensitive data in my Evernote notes, and as such would like to ask Evernote community some questions, receive recomendations in how to maximize the security: 1. What way and/or software/procedures can one use to fully protect Evernote local database in a Windows 8 64bits system ? 2. What way and/or software/procedures can one use to fully protect Evernote local database in an Android mobile phone ? Thanks, Zen
  3. I've just read an article about Perfect Forward Secrecy - a property of SSL that makes the communication between the browser and the server a lot more secure (http://en.wikipedia.org/wiki/Perfect_forward_secrecy). I looked at EN and it doesn't use it. This would be a good improvement in times of PRISM and Tempora.
  4. I've been reading through lots of posts on how to make Evernote more secure. Here's one suggestion. It involves a few compromises but might be suitable for some people, particularly if you want to keep sensitive information of a business nature in Evernote and only use on personal computers and not mobile devices. The scenario is 2 laptops, both running Windows (though the solution in principle also applies to Macs). It won't work with mobiles or tablets. 1. Install DropBox on each machine 2. Install BoxCryptor on each machine. This will perform on the fly encryption of everything in a mountable drive within DroxBox. 3. Install Evernote for Windows on each machine, and put the Evernote database in a Boxcrpytor folder. 4. Use Evernote, but put everything in local notebooks, which do not sync with the Evernote cloud. Although the local notebooks don't sync with Evernote servers, their contents (i.e. the Evernote database) does sync across DropBox machines so will be kept in sync across the two machines (and any others which are added). Can anyone see any flaws with this, other than the obvious ones: 1. Can't share notes with other people 2. Won't work on iOS or Android because even though there are DropBox and BoxCryptor apps, you can't tell the Evernote mobile client where to locate its database. BoxCryptor drives can be set to auto-mount when a particular user logs in (e.g. on a home machine which has BitLocker enabled), or not (for example on a work machine where the encrypted drive could be mounted manually when the user logs in). Also protects against the work machine being stolen if the hard drive is not encrypted. The data is secure on both machines, syncs between them and nothing (confidential) is stored within the Evernote cloud in a human-readable form. I've not tried this out, but would appreciate any feedback on the suggestion. Thanks. srm
  5. As stated above - all of a sudden, the web clipper extension simply refuses to acknowledge my password, since I turned on two-step verification. Can anyone shed some light on this? Cheers, Massimo
  6. To use several apps, I have to authorize them by giving them permission to "Retrieve Notes." As far as I understand, this means giving a third company access to the content of all of my notes, including attachments like audio. So if I use an app like that (e.g., IFTTT), then all of Evernote's security features are totally mooted, right? The third company essentially can access my entire Evernote account (minus certain things like my payment information). Very frustrating. Is there any way to use apps without giving third party companies access to all of my notes' content? It's absurd that they claim to need it.
  7. Hi, I've just started using Evernote, and I'm trying the free version to get a feel for how it works. So far, I'm very impressed. There's just one thing that stands out though: several security features (PIN lock, two factor authentication) are restricted to premium users only. I think that sends a pretty bad cultural message: that security in Evernote is an 'optional extra', where the level of security you offer is proportional to the amount the customer is prepared to pay. It won't stop me from using Evernote, or buying a Premium account if I'm happy with it, but it sucks that my data are less secure until I decide to go ahead and buy. Sours the whole experience somewhat. Yours, Duncan
  8. I've suggested this before and now again after the last Attack! Introduce an extra security layer like yubikey. http://www.yubico.com/products/yubikey-hardware/yubikey/ Games like, World Of Warcraft, Star Wars, etc. all use Digipass tokens. It's is important you guys introduce this extra security, for those who want there stuff better protected. I have this on my lastpass account, it is very easy to use.
  9. Hi, I have a premium account of Evernote in which I have everything I need to remember. I used it for personal and professional needs. I used it at home only because I don't want to have all my personal stuff inside my business computer. In order to use it at work, I created a free account and I shared my professional notebooks with my free account. Occasionally, I'm limited by free accounts limitations. It's a little bit frustrating as I have a premium account. I could use TrueCrypt based solutions to have my whole account protected on my business computer but I'm not a big fan of that kind of solution as I change regularly the computer and it implies to authenticate every morning. I prefer to have only my business stuff locally. Is there a way to handle this situation without buying a new premium access ? Maybe by linking my premium and free accounts ? Maybe by allowing partial synchronization of my premium account ? Thanks.
  10. Hmm, after cancelling my Premium service, I noticed Evernote's retention attempt that indicated SSL encryption is only available to Premium users. Perhaps it is just a typo, or perhaps something a bit more devious to retain departing Premium users. Screen grab from today: http://www.evernote.com/shard/s2/sh/555fbe1c-84e3-4e46-a98d-8c3177aa77ca/1c0593547b87ab1c1b46a3758321d770
  11. For convenience, there is no need to type password when opeing Evernote in devices. However, there are some documents stored in the the notebook needed a higher standard of security, like bank statement. Is it possible to set password for individual notebook for the coming version of Evernote?
  12. I've shared one of my work-related notebooks with a coworker. This coworker remarked to me that he had received an email alerting him that a notebook 'self-development' (a personal notebook) had been unshared with him. I never shared this notebook with him, and certainly did not share or unshare any notebook accidentally. I use Evernote for both work and personal purposes. Under no circumstances should any of my sharees have an opportunity to know anything about notebooks that are not shared with them - not even a notebook name. This really shakes my confidence in Evernote to preserve my privacy when sharing content with others. Is this a known bug? Did Evernote accidentally assign him the wrong sharing privileges, then 'fix' the mistake? Thank you, Rebecca
  13. Hi Community, this is my first post :-) I am new to Evernote, but otherwise quite IT-savvy, I guess... I have a feature request regarding security. I have to say that I am really concerned about privacy, so while I have been looking at and playing around with EN for a couple years, it was only a few weeks ago that I decided to fully embark on it. One thing that I don't fully understand, is why I have to give my password to the clipper, or several apps I use for uploading content. Whereas EN seems to be quite safe, a browser might not necessarily be? The clipper might not be? Or another example, I have just finsihed setting up a "doxie-scan go" to upload all scanned documents directly up to my EN (as a backup to my Snapscan, eg while scanning on the road). Now again I need to provide my EN-Password to Eye-Fi and/or doxie -not sure I trust their security expertise as much as EN. Long story, short (feature) request - Id love to have separate accounts (or separate passwords linking to the same account name) allowing e.g. only uploading, but not access to any of the stored content. Like FTP on my NAS. Or more general - I'd like to set different access levels to my data depending on the app I am 99% sure somebody had this idea before, but I could not find it via the search function (I did try). And for the remaining 1% likelihood I will happily take the risk of getting some comments on how to properly use a search function in a forum :-) Any thoughts? Thanks Oliver PS - I saw a lot of posts regarding 2 step verification - thats a different story - I mean different access rights within an account...
  14. I have been an Evernote user for some years but only used it now and then to store simple notes and for webclips. I'm now in the process of evaluating going paperless. I've been working on a scanner and automatic filing solution for storing directly in Evernote. Just when I was about to succeed in setting everything up Evernote was hacked, and I started to question if my idea of storing all mails and importan papers in Evernote was a good idea. Should I store "everything" there (apart from obvious things like pin-codes etc of course)? E.g. Birth certificates, wedding certificates, insurance, banking info etc? I'm looking for other peoples view on whether storing "everything" at Evernote (and searchable through OCR-feature) is a good idea. - Do people consider this a safe solution? - Do you limit what kind of papers are scanned & stored here? Do you also store locally at a local disk or do you store the most important locally on a disk and the rest on Evernote? - Is additional encryption of scanned files possible without disabling searchability? Would appreciate feedback on thoughts about this and how you use Evernote for going paperless. /BH
  15. Hey, i hope someone knows more about this than i do. My account password has been set to lprwhitehead@gmail.com... which isnt my address. The username is what it should be, and the app signs in correctly, but i cant do much from the app and the Mac app doesnt accept my password. This is mental!
  16. Need to be able to set a pass code to protect the notes just like the Evernote app.
  17. I have a concern of security. An attempt of breach in my account has been detected. I want to know from where. At least which country. Where can i get the information about the logged in sessions'
  18. I normally encrypt any content that is remotely sensitive before I send it to Evernote. With meaningful titles and tagging it is still easy to find what I am looking for. Sometimes however, the convenience of EN makes you act just a little bit too quickly...and a mail with an attachment that I would normally encrypt has been sent to the service before the brain starts functioning properly. It happened to me today, but fortunately there is no harm done as the content is after all not soooo sensitive. However, it made me think about how to handle this is general. If I mistakenly upload something to EN that should not be there, or should at least be encrypted, what are my options? This is my reasoning, and please correct me if I am wrong: If I am working from a desktop client application, in my case the Windows client, and I realize my mistake immediately, I can delete a note I just created (for example by hitting the "add to EN" button in outlook) before the next sync. This requires me to delete it from the trash as well. Right?If I send anything to my Evernote e-mail address, it will directly go to the server, therefore the option above is not valid.If I modify a note, let's say I replace a non-encrypted version of an attached file by an encrypted one, this doesn't help me because the note history will keep the old version.If I delete a note, and I also delete it from the trash, then ??? This is not really clear to me...Looking at all this, I am thinking about setting a local notebook as my standard one. This way everything remains local in the first place, I can edit or delete it with immediate effect and move it to a synced notebook afterwards. Comments are appreciated
  19. I live in Evernote. Evernote is mission-critical to my business. Here's how they should have handled this situation: Send out an email to their 45M users before they configure the client to pop up a "change password" message. Maybe not everyone will have read that email before they use Evernote but at least Evernote will have made an attempt at warning them. The client message should say that the user needs to change their Evernote account password. It should not display the email address associated with their Evernote account with the wording "Your password seems to have changed...". That message is completely inaccurate and confusing to the ordinary user.
  20. Using EV client version 3.1.0,1225 (yes, I know - it's ancient, but it works for me...), with WIN-XP SP3 -32 bit. When I read a PDF stored as an EV Note, EV pops up an info window, saying it's using the FOXIT PDF Reader inside EV, to render the PDF. That's OK... But what if the PDF (stored and rendered inside EV), contains an embeded, malicious JS script, and the JS script gets executed by the EV Foxit Reader? For my local PDF files (in my HD), I read PDF files with Sumatra PDF Reader or PDF-Xchange Reader, both with JS script execution TURNED OFF... Question: ======== Does EVs Foxit Reader have JS script execution TURNED OFF ? (while rendering a PDF file INSIDE the EV client version 3.1.0,1225). If it is not turned off, that would be a HUGE security risk in PDF rendering inside Evernote!. Is this a Security Risk? Thanks for any opinions or facts.
  21. Using EV client version 3.1.0,1225 (yes, I know - it's ancient, but it works for me...), with WIN-XP SP3 -32 bit. When I read a PDF stored as an EV Note, EV pops up an info window, saying it's using the FOXIT PDF Reader inside EV, to render the PDF. That's OK... But what if the PDF (stored and rendered inside EV), contains an embeded, malicious JS script, and the JS script gets executed by the EV Foxit Reader? For my local PDF files (in my HD), I read them with Sumatra PDF Reader or PDF-Xchange Reader, both with JS script execution TURNED OFF... So....the Question: ============== Does EVs Foxit Reader have JS script execution TURNED OFF? (while rendering a PDF file INSIDE the EV client version 3.1.0,1225). If it is not turned off, that would be a HUGE security risk in PDF rendering in EV.! Thanks.
  22. Hello, Can I remove notes from a remote computer? I know that I can change the password, or even disable the account, but that doesn't seem to remove notes that have already been synced up on the remot computer. Thanks
  23. I am dumbfounded by the following quote from a VentureBeat article today: Libin said the company will never mine data from your notes and sell it to advertisers. However, he believes that Evernote can analyze that data to benefit consumers and make them smarter. For instance, a recent update to the food app incorporates automatic recipe detection. In your mass of notes, Evernote’s technology can recognize food items and help you make a shopping list. [Emphasis added] Read more at http://venturebeat.com/2013/01/31/evernotes-new-features-are-for-the-pros/#WdmtgkMeCyCbW5vd.99 Libin is saying that Evernote is going to scrape users' notes! I honestly believed the following language in the Privacy Policy. I'm no longer comfortable with my Evernote Premium account, which I have been previously comfortable using to store certain confidential information. Does Evernote Review My Notes? As a rule, Evernote employees do not monitor or view your personal information or Content stored in the Service, but it may be viewed if we believe our Terms of Service have been violated and confirmation is required, if we need to do so in order to respond to your requests for user support, or we otherwise determine that we have an obligation to review it as described in our Terms of Service. Your Notes also may be viewed where necessary to protect the rights, property or personal safety of Evernote and its users, or in order to comply with our legal obligations, such as responding to warrants, court orders or other legal process.
  24. I have 2 cellphones where I use evernote. Unfortunately I have lost one of them yesterday, so I have set up a pinlock in my other device trying to void the person who has the one I lost to access my notes, will that work? How can I make sure nobody will access my notes from the device I've lost?
×
×
  • Create New...