> This change is akin to Google no longer accepting incoming e-mail for @gmail.com addresses from non-Google domains. That would be unthinkable.
The sad thing is that I no longer consider this unthinkable. There's an extremely disconcerting email monoculture emerging around gmail. Practically everyone I exchange email with uses gmail. Companies and universities are switching to gmail. It can be difficult to get your mail accepted by gmail if you run your own servers: I help administer the servers at one organization whose mail (personal correspondence, not mailing list posts or the like) often gets sent straight to gmail's spam folder and we're doing everything right in terms of DNS/SPF/DKIM/etc (in fact, the same config works great elsewhere). Try to look for help on gmail's website and all you can find for this problem are the "Bulk Sender Guidelines" - as if the only people who aren't using gmail already are bulk senders.
Now consider Google's actions as of late. I could totally see them one day saying, "we're not going to accept email from you unless we've emailed you first or you've contacted us to ask for permission." There would be outrage, but I also wonder how many people would actually stop using gmail if they did this.
Edit: I'm not saying this will happen, I'm just saying it's not unthinkable, which is sad.
> I could totally see them one day saying, "we're not going to accept email from you unless we've emailed you first or you've contacted us to ask for permission." There would be outrage, but I also wonder how many people would actually stop using gmail if they did this.
> It can be difficult to get your mail accepted by gmail if you run your own servers: I help administer the servers at one organization whose mail [...] often gets sent straight to gmail's spam folder...
As a counterpoint, I've been running my own mail server for 15 years (from various hosted and dedicated servers) and I haven't ever had a problem delivering to gmail...
Yeah, I run other mail servers as well, and none of them have problems delivering to gmail. It's just this one place which has a problem, and there is no way to make Google care about it. I fear it will only get worse as the gmail monoculture spreads.
The "unintended side effect of filtering spam" explanation makes no sense.
How likely is it that the same company which builds bleeding-edge machine-learning systems to track and predict our behavior online, and which uses these AI predictions constantly to maximize their ad revenue, somehow cannot find a better way to filter out spam invites?
How likely is it that the same company that houses the likes of Hinton, Norvig and Kurzweil under the same roof can't find a better way?
Google is packed with experts at solving the "spam filtering" (i.e., pattern recognition) problem.
It appears this was done on purpose[1], driven by a corporate culture that no longer cares as much about openness. [Please read jholman's responses below. He's right, I went too far with this last sentence.]
Edits: added "it appears" at the end, to tone down the language. Also, reworded and added sentences to make my point clearer, and corrected text to refer to invites, not messages (thanks for pointing that out, mdc!) and point out that this was indeed done on purpose.
I don't know what's going on, and I prefer to trust the FSF, but I notice that they are wilfully misrepresenting the statement by pergu@google on the operators@xmpp list, and so are you, cs702.
Per said, a month ago, "is there anything you can do about it in that case, otherwise we will have to institute very tight limits of invites per day being sent from federated domains", speaking about specific domains, and speculating about a possible future strategy.
FSF says (paraphrasing): "we have this symptom, we're convinced it's for this technical cause... " (so far so good) " ... "and this email thread says that Google is doing it on purpose". Bullshit, that thread says nothing of the kind. Stick to what you know.
jholman: could you imagine Google doing the same thing for email? ("We will have to institute very tight limits of emails per day being sent from external domains.")
My point is not that this is okay [0]. My point is that FSF is claiming "Google is doing this on purpose and this link says so", and YOU said "this link says so", and that's not what that links says. So stop making shit up. Stick to what you know, and/or to your opinions.
FSF could have avoided my complaint by changing "According to this thread, Google is doing this on purpose" to "Based on this thread we're guessing Google may be doing this on purpose". You could have avoided my complaint by leaving your whole last sentence off.
[0] Supposing that this IS what's happening, I'm not defending it (nor opposing it, I'm not forming an opinion). But as a side note, my understanding is that nearly all email providers DO do this thing for email; if a given domain is spamming hard enough, eventually email providers start dropping mail silently. Don't they?
It also says that they were considering limiting invites per domain per day, which is quite a different thing than blocking all external invites, and it actually isn't all that different from what is done with email from domains that tend to send out a lot of spam.
However, the problems with this solution are
a) that it doesn't discriminate between domains with a lot of traffic and domains with a lot of spammy traffic (though, again, that's just speculation and maybe they do have that data), and
b) there's no message to the user that is being ignored. I don't know if jabber supports rejection messages, but it would be much better if they could get a message that let them know why they were being turned down so they could pressure their chat server operator to reign in the spam accounts.
It appears from the FSF post that they've actually tested invite requests, though, so presumably they are rejecting all invites, which makes the earlier email even less relevant as evidence of what is going on now. Surely the FSF has a contact at Google?
We don't know exactly what the FSF is seeing, nor if they did fair tests, nor if they're reporting fairly (though I tend to assume so, tentatively).
We don't know if Google did something deliberately, nor who did it. We don't know how it relates to Per's mailling list message, if at all. If there was action, we don't know if it's an experiment, or a bug, or who it affects, or how often.
More generally, it doesn't seem like this is an urgent issue that requires panicking. The world can get along fine for a month without people being able to invite gmail users. But, on the other hand, if the worst case is true, that Google has started blocking invites from ALL other domains, ALL the time, then I think the FSF's political position is sound.
Sure the world may get by, but federated IM should be the future of online communications, possibly even more so than email. People love to chat online, SMS, iMessage, etc. But these systems shouldn't be so fragmented into isolated little islands. Apple's iMessage shouldn't even exist and should just redirect people to an XMPP service, while SMS should just be seen as a legacy.
jholman: after reading everything again and thinking about it, you're right, I went too far with my last sentence. I added a note to my comment. Thank you.
I have spam-filtered email addresses through 3 different email providers, one of them being Google.
Only Google manages to constantly produce falls positives (including mail from, sweet irony, Google services like Analytics) and regularly allow spam and phishing mails through.
The other two, ran by relatively small providers, are nearly perfect.
Don't overestimate Google.
(The same "intelligent" Google also seems to be unable to figure out which language I use, despite me telling them on a regular basis.)
How many spammy emails do you get at each address? You seem to be measuring the absolute rate of false negatives/positives, but not measuring the relative rate.
I have no numbers, but the non-Google addresses are much older (one dating back to the mid-90's) and have been liberally strewn around the internet for well over a decade.
They both get several times more spam than the much more recent business-only Google address, yet if their filtering lets through one per month it's a lot. I can't even remember the last false positive.
The majority of the mail that ends up in my Google spambox consists of legitimate email from reputable sources (Amazon, Facebook, Google itself), and barely any actually spam. Extra annoying: perfectly fine email from our own services regularly gets flagged as spam by Google, and we often have no f-ing clue why.
And don't get me started on Google Groups spam filter, which for some reason is even worse. I have to turn it off for any group-address I want to make accessible to non-members.
They may be much older, but if your Google address is @gmail then I guarantee you it gets far more spam, just from scattershot spammers.
As an anecdotal example, I have an email address that's been strewn about the internet for almost 2 decades. It's currently hosted on Google Apps, but it has a non-Google domain. I get a spam message in my inbox maybe once every couple of months.
I also have a gmail address. I never use the thing. But it gets inundated with spam, and every month or so when I go look at it I have to clean lots of junk out of the inbox.
Since they're both hosted by Google, I'm forced to conclude that the gmail one gets many orders of magnitude more spam merely by virtue of ending in @gmail.com.
Google simply isn't very good at filtering spam, something most regular ISP's can handle perfectly well, and the lack of options in Gmail and Groups clearly show that they don't care very much about it either.
Fun fact, Google doesn't play nicely with ESPs either. Most mail providers (Yahoo, Hotmail, etc) use a feedback loop when you report spam. After you mash the spam button, the ESP that sent the mail is notified that a particular email was flagged as spam.
This allows the ESP to curtail spam problems on their end (for example, Mailchimp heavily throttles your emails or outright bans you if your spam rate creeps past a very low percentage). It's an all-around good thing for the ecosystem, with the exception perhaps of publishers that get the unlucky "spam instead of unsubscribe" user action.
But Gmail does not participate in this loop. They don't tell any ESP that a user has marked an email as spam...that data all stays in house. Why? Hell if I know - perhaps they don't want to tip off spammers to being detected. On the flipside, reputable ESPs get less leverage on spammers in their network.
because it would allow spam houses to train their software to avoid the Google spam filter. No feedback loop makes it harder to train (not impossible, just harder)
My experience has been the opposite. I get very few spams per month in gmail, but other mail providers I've used had done far worse spam filtering (walla mail, yahoo mail, netvision).
Every day I get hit by about 100k connections for email to my domain (0x58.com), the spammers hit <random>@0x58.com. So far they haven't hit a single actual email address that exists.
Out of those 100k connections, one or two emails come through to my valid email account. So yes, scattershot makes sense, but from looking at my logs, unless your account includes a lot of numbers you aren't going to get hit :P
I have the opposite anecdote; which is that all of my email addresses redirect to my Gmail, and I don't recall a false positive for at least 6 months. And in the past they have usually been things like activation emails.
I get a maximum of one spam mail/month. The rest is all filtered by google. False positives happen but weirdly enough the only thing I repeatedly see there are plus.google.com notifications…
Spam filtering by now is pretty trivial if you don’t mind being an ass about standards - require valid HELOs, valid hostnames, valid PTR records and valid A/AAAA records for these PTR records and hostnames listing the connecting IP and you will hardly get any spam.
Add to this ‘temporary addresses’[0] and train your spam filter on everything send to invalid such addresses and basically nothing gets through.
[0] I use a scheme where my website and mailing list addresses are of the form claudius_YYMM@example.com. Mails to these addresses are marked as spam after the 15th of MM+1 and before the 15th of MM-1. Obviously only works for mailing lists if they’re open to non-subscribers as well.
I've found this to be untrue in my experience filtering spam. Being a hard ass drops a lot of legitimate email, and a lot of spammers follow the RFCs beautifully now.
Surely YMMV, but so I only observed two problems: Daily wikipedia articles when delivered via IPv6 (IPv4 worked) and StackExchange while on the west coast due to one of these nice hurricanes.
Maybe Hinton didn't make any progress on it yesterday so they decided to call it quits?
It does suck that they did this. I have been hit with many spam requests through Google Talk recently though. You should at least be able to whitelist people in your address book or something. Yeah, you can still send them an invite, but what if the third party's service adopted the same policy as Google?
A good starting point for that would be to allow invites from people you have already added to your contact list, i.e. X@example.com authorised Y@gmail.com to get status updates and Y added them to their contact list, but authorisation requests from X to Y still appear to be dropped.
This makes perfect sense to me. Chat is an important part of a service that my company provides to our users. We received great response after launching "gtalk integration" for chat until some new users started reporting problems due to this issue. We tried the other way around ie. having them send an invite to us but sadly that doesn't work as well. Hope google comes up with a better solution soon.
You could allow invites, then use subsequent content to determine spam vs non-spam. Block content when its spam and notify the user, blacklist the JID where it came from and eventually domains where there is a high proportion of spam. Also allow users to report spammers. You could possibly even get clever and learn to recognise patterns in the JIDs and domains chosen by spammers, but this is bound to block legitimate content as well.
You could perhaps increase the requirements for sending invites, such as having the recipients server send a CAPTCHA, although spammers seem to be able to get around CAPTCHAs anyway. Perhaps there would be some other solutions that I haven't thought of.
> How likely is it that the same company which builds bleeding-edge machine-learning systems to track and predict our behavior online, and which uses these AI predictions constantly to maximize their ad revenue, somehow cannot find a better way to filter out spam invites?
Spam detection algorithms, even Google's, are rarely perfect. They probably came to conclusion that blocking foreign invites is a good tradeoff. We don't have enough information to evaluate if it was a good tradeoff. I think it was. I was recently getting lot of spammy chat invites (chat bots that tried to convince me to do an online payment for something), it was quite annoying.
Honestly, it makes perfect sense to me - most of the spam I get through non-google instant messenger accounts is in the form of invite spam, and if they're seeing a massive spike of that then temporarily blocking them isn't entirely unreasonable.
So long as it's temporary (and given you can request whitelisting in the meantime), I don't really see the problem.
So if it's not about spam, what is it about? Trying to get everyone to use Google Talk? Do enough people use other Jabber servers to have the tiniest effect on Google's business?
I'm one of the authors of the Prosody XMPP server, and a member of the XMPP software foundation. Prosody operators have been reporting this for more than a week now.
Google users have apparently been flooded with subscription requests from spammers, and the flooding suddenly became massive. The problem is, there are a large number of jabber servers out there which have open account registration without captchas. Most jabber server software doesn't come with a captcha module included by default, and of course, most admins don't bother changing defaults, even while running a public server with open registration.
Unlike some other comments here, I don't think Google has any malicious intent in this. This seems like a stop-gap measure, while they figure out and implement a proper solution.
As to the proper solution, the XMPP community is largely moving towards having captchas, or other forms of verification, and there are a number of proposed standards.
The thing to understand here is that the XMPP community has historically not had a spam problem. Due to the nature of the protocol, spoofing wasn't possible from the start, and there were no large lists of JIDs for spammers to abuse, so things worked out fine for a decade despite a lack of captchas. The good news is that the XSF was already preemptively working on the spam problem, and the speed with which XMPP specs (XEPs) get defined, implemented and deployed in servers and clients is far faster than any other large scale open protocol that I'm aware of.
I think I might be a minority here, but I think this is an okay move. I use gchat exclusively with people within my workplace (also on gchat) and friends who also work at places with Google apps.
However, I've been getting a consistent barrage of requests from spam email accounts to chat; accounts with obscene names like 'sweety+69+for+free@freemail.ru' or something to the sort. The names/domains of each are different every time, so I can't simply block a domains.
I ask: if Google does not block outside requests, what could they do to stop this sort of thing?
Obviously not. But anti-spam measures are decades old at this point and well known.
The argument is a "the technology isn't there yet and spammers are running rampant, so the obvious solution is block it, which isn't ideal", not "Google is doing this because they want a monopoly on chat, and broke the protocol to do it".
Personally, I'm not (necessarily) suggesting that "Google is doing this because they want a monopoly on chat, and broke the protocol to do it". But it seems to me that as much experience as Google engineers have dealing with spam in the email world, they could come up with something feasible on XMPP as well.
Doing this strikes me as throwing the baby out with the bathwater.
> it seems to me that as much experience as Google engineers have dealing with spam in the email world, they could come up with something feasible on XMPP as well.
But before they start on this research project, they might want to do something about the spam their users are getting now, right?
I for one vote "yes". I was starting to receive lots of spam requests from within google talk. It was really annoying. Whatever they did it stopped and I'm glad for it.
Great, you lose one minor annoyance, and the rest of us deal with the fallout of a broken Internet. Sounds like a great tradeoff to me.
What is it with modern times, where people are willing to sacrifice fundamental things, like applications that adhere to standard protocols, to gain some minute level of relief from something that's just "annoying"?
They are effectively stopping people from running personal ejabberd servers. What the hell is the point of running your own jabber server if your users can't talk to users on the largest jabber network on the planet?
As if they've only now suddenly realised that there are XMPP chat bots and that they might have an impact on user experience one day...
One of the first things that one thinks of when designing/projecting a large-scale system should be the potential for abuse. Are you trying to convince us that Google didn't take that into account when they chose XMPP as the underlying technology for GTalk?
Yes. They didn't choose XMPP federation as the underlying technology -- that came later. XMPP is a nice protocol, and XMPP federation is a broken disaster with no anti-spam features.
Right now, it could be a list of all invitations that come from non-google domains. I assume they could do better than that over time, but my point is that "decline and log for review" is an option whenever "decline alone" is. On review, you could whitelist the false positives.
Obvious fix here: only allow chat invites from people you have sent an email to. Google could return an error to blocked invites to inform them that they must get the recipient to send them an email first.
I can't see any downsides and it definitely solves the spam problem. If they could make it apply to other gmail accounts as well, even better. I've gotten annoying gchat requests from sweety69@gmail.com as well.
The Gmail user could add the account to their contacts without sending an email. Hell, they could send an email to a nonexistent jabber address to whitelist the account (which might be easier than adding the account manually for some people). As long as the email doesn't have to go through...
I was very disappointed when I found out they don't use TLS when federating XMPP. Basically, if you're chatting with someone who uses them for XMPP (Jabber) service, your stuff is riding in the clear between the two servers.
Edit: that came out a little curt. The OTR protocol is different than what Gmail calls OTR. Gmail's just turns off logging; the protocol is encryption.
Kind of like how we break a lot of our legal system to "fight child pornography". Yes, they're both bad things, but fighting them cannot come at the cost of breaking otherwise perfectly legitimate and functional endeavors.
I've met two very intelligent women (That don't know each other) that for most things have very reasonable opinions.
But throw "child abuse" and it is like telling a robot to hide in a corner in a round room, they just break and if they could they would pass laws about instantly killing suspects of child abuse.
When I try to argue with them of how "x" or "y" is bad idea because of its side effects, they always reply: "I don't care, EVERYTHING is worth doing to protect children."
And then I understand why so much politicians use "for the children" rhetoric when they want something.
I prefer "well intentioned but misguided", "worked up by a sensationalist media that obscures the fact that kids are safer than in the 'idyllic' 1950s", etc. theories.
I thought SOP for mitigating IM spam was to require user confirmation before delivering the suspect IMs?
Google doesn't have to perfectly solve the spam identification problem in order to make IM usable without rejecting all remote messages.
Why won't this work:
- Allow IMs if the sender's address is anywhere in the recipient's contact list, or in a separate IM-specific whitelist (see next point).
- Have a separate IM whitelist that supports user@domain or @domain for special circumstances.
- Automatically add any foreign outgoing-IM recipient either as a new contact in the sender's contacts (if an IM field is added) or in the separate IM whitelist, so return IM from the same address is guaranteed.
- Have a list of unconfirmed senders from the last N hours/days (after which they expire and are dropped), with a web-based interface... (clarification) notifications of these requests would NOT push through to the Google user's IM interface.
- Optionally reply to unknown senders: "You are not a confirmed sender of this recipient. Contact recip OOB to ensure future delivery."
- Optionally add an IM field to google contacts, for instances where a remote address doesn't function as an email address.
The requests themselves are spam. In the last couple of months I was seeing an increasing frequency in "lisaxxxhotone wants to chat with you" requests.
I always ignore them..but it's a very annoying problem. You can simply ask for user confirmation, you're bothering me about something I really don't want to deal with.
Ha! I think Google must have realized that over the last two days I have deleted my Google+ and youtube accounts, shut off/deleted blogger, purged Chrome from all my desktops, laptops and phones and registered for an @jabber.org XMPP address. And I'm not the only one, my friends are all on board with excising the hydra. Still hesitating about the effort needed to migrated from gmail, though. Time to organize exodus parties.
It's not really that hard. Backing up is relatively easy (offlineimap or similar) and you just need to forward the Gmail account to your new one for a transitional period, while you gradually change your address.
I'm not saying this is going to happen at all, but I wonder what would happen if Google had to end up putting all its horses behind automated cars and Glass (because of changes to the search marketplace, of which these changes we're seeing are just the start of a response to). In 20 years we'll be driving Google Cars and we'd tell our grandkids "You know, Google used to do email" to their great surprise.
In real history, this is like telling kids that Nintendo used to make Japanese playing cards.
> In real history, this is like telling kids that Nintendo used to make Japanese playing cards.
Not really, Nintendo cards weren't used by most countries on earth minus China and didn't revolutionized gaming world widely the way google did with organizing knowledge.
Well, they also made love hotels and a (taxi) cab business. Without making any predictions of my own, I agree it'll be pretty interesting to see what a company like Google will become down the road.
There are legitimate ways that follow the letter of the RFC to prevent spam over SMTP (greylisting, etc.), or to overlay sender/server validation on top of it (SPF, etc.), but most of these lessons aren't cross applicable to XMPP
Sure, Google could spend a lot of time trying to come up with a technological solution that doesn't break federation (except for in spam cases), but it would be difficult to do on a service that fundamentally doesn't make money.
This sounds like blog trackback all over again - useful, a nice idea, but nearly worthless once spammers figure out how to pee in the communal pool.
“This change is akin to Google no longer accepting incoming e-mail for @gmail.com addresses from non-Google domains”.
No, it’s not. It’s this kind of constant exaggerated claims that give a bad reputation to people that speak for free software, and make them look like out‐of‐touch conspiracy theorists (think Stallman).
Now, I’m not saying I disagree with the message as a whole; it is bad that google closes the door to this kind of interaction, but it’s nowhere close to what they claim (and in bold). With their example, you’d effectively only be able to speak to the person on the other side, but never receive their messages. This case is very different, as only the initial contact is unilateral (the person with the gmail account has to invite the other one), but after that, it works just as well.
It’s this kind of stupid exaggerated argument that drives people away from your message.
So what's the best alternative for mobile XMPP messaging? I've tried a couple of the popular ones, and none of seemed to work as well as GTalk (reliable delivery with no effect on battery life). I assume that GTalk is only a slim client, and the XMPP stuff happens server side, which aids in that. I suppose there are other services that work the same way. Anything self hosted?
Also, not having OTR messaging (ie. the socialist millionaire protocol, not Google's private mode) just seems stupid in this day and age. And so does not using TLS for federated messages, if what I've just read in another comment is true. It really is time to switch.
I'm assuming you're on an android device (you didn't say) -- all¹ Android devices are "always" connected to GTalk already. GCM (C2DM) sends all push notifications/wakeup requests over this channel, and therefore the framework ensures the socket remains open even when sleeping.
Okay. TANSTAAFL. Regardless, in my experience, apps like Jabiru tended to drain the battery noticeably faster while at the same time being less resistant to outages when interrupted briefly (elevator, subway, etc.).
They have been doing this since at least the beginning of March. And the blocking is also done in a way that causes the user to not be notified, basically by replying in the wrong direction.
while this does sound really horrible, the pragmatic part of me is forced to agree with google's decision here. Other gtalk users undoubtedly account for the lion's share of incoming requests, while non-gtalk requests undoubtedly account for the lion's share of spam. it's much, much easier to whitelist the few 'good' jabber providers than to filter the spam.
Frankly, after I received some spamming bot services to contact me, I do not think that the Google solutions is that bad. You can request to be white listed if you are a legit site. This increases the quality of gmail's user service and still let other legit player to access gmail's users. As a gmail user, I think what they did was good and if somebody has a better idea... please... I am waiting =)
I have 15 minutes a month to run my own shit. What solution do you have?
No, really. I would rather spend that five hours making sure shit works with my boyfriend, or my family, or my friends, or learning something that will make me money, or working on a pretty cool hack I thought of while in the museum last week, or working on my unfinished novel that has been languishing, or work on proofreading a paper for a friend, or just relax.
Yeah, system administration is under those priorities.
I am more than willing to pay. I just want to pay one person for everything. I want that integration. I want webmail. I want to be able to access it from my phone without issue. I like integration.
I may be a geek, but I have better things to do than figure out why my email isn't getting to a friend because someone's IP address ended up on spamhaus.
Ebiester: if you want a decent email platform with webmail, calendaring and maybe xmpp, have a look at Zimbra.
It's super easy to install, all you need is a VPS with Centos 6 or Ubuntu 12.04 and a static IP address, then download and execute the installer.
I understand it's not so easy to run your own stuff, but it's also not as hard as some people believe, especially if all your need is a small setup for personal use.
I'll try to wrap up some tutorials in the near future to help people run stuff on their own. I'll remember to ping you when done.
I think you missed something critical in ebeister's comment. It wasn't "how can I do it?" It was "how can I do it within this severely limiting constraint?"
You might argue that a few hours a month isn't much time for working email, but it is when Google will reduce it to 0 for you. In a hierarchy of needs, food is far more important than email, and despite this very few of us try to completely manage our own farm.
Getting an email server up and running is trivial, just like planting a few crops in the garden is. It's the reliability and maintenance that is the hard part.
> I am more than willing to pay. I just want to pay one person for everything. I want that integration. I want webmail. I want to be able to access it from my phone without issue.
I'm in the same boat - currently looking for somewhere to move stuff to. I'm giving atmail.com serious consideration for mail/calendar/contacts, as the first is reasonably easy and the latter two _seem_ to be working on desktop, android, and ipad. They don't do XMPP though, so I need to figure out a solution for that.
I would still recommend Zimbra or Zarafa, as far as open source goes. Or if you can't be bothered with running your own, both products list a series of partners who do this for you.
Not sure about the headline, but the tone of this message from the FSF suggests a maturing of their efforts. Notably missing is a lack of the word "evil" or strongly worded demands. It makes them far more credible, I think.
Good thing I never gave up my @jabber.org address… To think I recently held them up as properly working with the XMPP consortium to add official features unlike facebook.
For those who would like to move away from Gmail+GTalk but don't want the hassle of running a VPS, Dreamhost offers XMPP as part of its web hosting service.
It's not surprising, google has been on the road to becoming the next Microsoft for a while. Though it is depressing.
It's interesting though, so much of google's core business relies on trust, and they've been making a lot of moves lately to just throw away as much trust as possible. Maybe it's sustainable, but I'm skeptical.
Is there any evidence that what Google pays is the market rate? I.e. if they cut ties, would Mozilla be able to get about the same amount for default search engine position from Microsoft?
Now that Yahoo is powered by Bing, there are only really two big multinational commercial search engines. Both of them are owned by companies that also offer browsers to compete with Firefox. If neither of them paid, Firefox would still have to include a default search engine. I hope Mozilla can keep going, but honestly it does seem rather dependent on Google's good will.
> It's not surprising, google has been on the road to becoming the next Microsoft for a while.
I've heard this a lot. Are there any specific anecdotes that really show a strong analogy between the two? Do I have to assume that today's "Cloud" is yesteryear's PC-Compatible?
It's a general feeling, mostly. Google seems to be growing more and more out of touch with its users in general. Some major warning signs for a company going down this road are: pet projects being given importance well beyond any hard-headed rational assessment; "strategy tax" behavior, making decisions which only make sense in the broader sense of serving the "greater good" of advancing a platform or what-have-you; making big decisions that are out of touch with what the market/public wants; using sheer size and resources as a market weapon instead of letting competition do its work.
Google's social endeavors have always shown them to be out of touch and incapable of engaging the market with a product that people care about (orkut, knol, buzz, wave, and now plus). Their approach to "customer service" for many of their products is to actively disconnect from their users and let the natural release cycle take care of things. They have a long history of ugly interfaces with poor usability. Youtube is a good example, discoverability of new content has only gotten worse over the years and many fundamental features are really very broken or at best poorly implemented (such as playlists), despite being an otherwise mature product. They've killed off lots of small products and projects for the sin of not fitting in to the grand strategy. And they've tried as much as they dare to force people into using google+ whether they want to or not.
Google still has a huge number of world-class engineers, and that will enable them to continue making some truly great things over the next years and perhaps decades. But fundamentally google is on a track toward becoming just another run-of-the-mill mega-corp, and if they continue along that route eventually a lot of the talent is going to evaporate away (as has happened and is continuing to happen at MS) and there won't be anything to save them from mediocrity.
Also kind of interesting in the context that Google IO is just around the corner. Wonder if they will be announcing something that will somehow make more sense of all this change than is apparent at this stage.
6) This week is also the week when the "no more free Google Apps for domains" came into action. Now it's $50 per new account / year. Old accounts are fine though.
Looks like anything "free" is quickly disappearing : )
At least Microsoft folks do not pretend they are not evil , Google is even more devilish when they claim they are not evil ... Well they are at least as bad in PR as Adobe , that's a relief.
The sad thing is that I no longer consider this unthinkable. There's an extremely disconcerting email monoculture emerging around gmail. Practically everyone I exchange email with uses gmail. Companies and universities are switching to gmail. It can be difficult to get your mail accepted by gmail if you run your own servers: I help administer the servers at one organization whose mail (personal correspondence, not mailing list posts or the like) often gets sent straight to gmail's spam folder and we're doing everything right in terms of DNS/SPF/DKIM/etc (in fact, the same config works great elsewhere). Try to look for help on gmail's website and all you can find for this problem are the "Bulk Sender Guidelines" - as if the only people who aren't using gmail already are bulk senders.
Now consider Google's actions as of late. I could totally see them one day saying, "we're not going to accept email from you unless we've emailed you first or you've contacted us to ask for permission." There would be outrage, but I also wonder how many people would actually stop using gmail if they did this.
Edit: I'm not saying this will happen, I'm just saying it's not unthinkable, which is sad.