boot-repair does not warn users it's going to make their boot configuration public on the internet

hi Junien
thanks for the report.
Your statement is correct, but you do not explain why this is an issue.
We try to avoid the software popup useless things, so this won't be added unless there is a good reason.

Hi Yann,

Thanks for getting back to me. This issue is mostly about trust : people have to trust that the software they run will not expose anything on the Internet unless requested/agreed to do so. An example that comes to mind is the popup that appears the first time you run VLC.

I was merely suggesting the popup as a possible solution, by the way. Another acceptable solution (for me at least) would be to change the text of the option to something more explicit. For example : "post my boot configuration on Internet so that others can help me". Or display this is in a small text under the "create BootInfo" option.

And have it disabled by default, of course, so that the boot config will be pastebin'ed only if the user chooses to.

Thanks for your time.

The software that you maintain, shares the user's drives' serials, LUKS headers, user name, UUIDs and more without even telling it to the user. How is that not an issue. It doesn't even say something about this while the user is adding the paa.

Please provide an easy way to opt out, and tell the user about this behavior of the software before it has been shared it to the public.

By the way, could you please run the boot-repair on your personal, encrypted device and post the log here?

Hi Yann,

We still get requests to remove unwanted paste.ubuntu.com posts generated by boot-repair. In lights of the above, can you please reconsider your position, and change the default or make the user aware that his boot configuration is going to be posted publicly on Internet ?

Thanks

Could you maybe have it email the information? I agree that for some very security-conscious people, discovering that their boot information has been posted on a public page on the Internet could be very disconcerting.

I am one of the people who complained to Ubuntu about this.

Uploading potentially private info to the internet, without asking to do so, is not obvious behavior.

If a tickbox, or popup isn't feasible, maybe changing the description of the function to "Upload boot info to pastebin" would work?

Fixed in boot-repair 4ppa35 via a popup question.