"opt-out was probably the best choice"
Not if you want to be GDPR-compliant.
Methinks Canonical might be getting a call from some lawyer soon . . .
Ubuntu 18.04, launched last month, included a new Welcome application that runs the first time you boot into your new install. The Welcome app does several things, including offering to opt you out of Canonical's new data collection tool. Ever since Edward Snowden confirmed so many once outlandish conspiracy theories, the …
It was, until all the evil $"q$w started grabbing everything they could vacuum up about us.
Unfortunately this exercise does comprehensively fingerprint the host machine and Snowden did move the (acceptedly fuzzy) paranoid/sane boundary a long way into the previously paranoid side.
Are there any ideas out there about how we give useful anonymous feedback to developers?
you need to read up on GDPR.
Nothing collected by Canonical is GDPR infringing. It's basic hardware metrics on a machine similar (but more techy) to the advertising blurb you see on Dells website giving ram and cpu specs etc. A machines info inst covered under GDPR or DPA.
Your helping to pour fuel on a heated debate by having no idea what your actually talking about. Stop it its silly.
"Nothing collected by Canonical is GDPR infringing. It's basic hardware metrics on a machine similar (but more techy) to the advertising blurb you see on Dells website giving ram and cpu specs etc. A machines info inst covered under GDPR or DPA"
^ Exactly this. Not only that, and unlike with Microsoft and Google, a clear binary choice is offered - to take part or not take part in data sharing.
"PII is a very specific legal term from the US about HIPAA."
And, "PII" as used in the US is a bit of a lie. There's an awful lot of personally identifying information that isn't considered PII. And, in sufficient quantities, all information about you becomes personally identifying.
>>PII is a very specific legal term from the US about HIPAA
Only in some contexts.
For example the Census Bureau has its own definition of what PII is (as do most other Federal Agencies that use your data to provide some kind of a service, the IRS has a different definition, as does FEMA), as do the States. And like usual with the Federal and State bureaucracies, there's no one definition to rule them all.
Afraid the lawyers would have much of a chance. Repeat after me:
GDPR ONLY AFFECTS PERSONALLY IDENTIFIABLE INFORMATION.
GDPR ONLY AFFECTS PERSONALLY IDENTIFIABLE INFORMATION.
This data is anonymised, no compliance required.
Doesn't matter if it's an opt-in or an opt-out. It's anonymous data.
(UK spelling)
I'm pretty sure the article said that the IP addresses weren't being logged... so "not persionally identifying" and "not personal data". which is fine with me. I might consider letting Ubu (and others) know stuff about what I install and where I install it, next time I install one of their distros.
I used to allow that, long ago, even for Micro-shaft, until it became obvious we were being snooped and tracked and whatnot by aggressive advertising firms that seek to target us with their marketing.
Perhaps this article is like the pendulum swinging back towards the middle again?
They are not including the IP address.
No, but they are sending the data to their servers over the internet, so the addressing information will be available from the received IP packet headers. It wouldn't be rocket science to associate the data with an IP address if they wanted.
I wouldn't say that an IP address should count as personally identifiable data, though, there are enough dynamic IPs and enough NATted shared IPs to make it difficult to associate an individual user with a particular hardware fingerprint.
What worries me more is that the data collected will enable them to discover which CPU types (for example) are only being used by a tiny fraction of the userbase, and prematurely discontinue support for those chips in order to make use of some new feature nobody has ever heard of in the very latest.
I don't mind downvotes, but I'm honestly curious here -- why is this comment getting them? Can someone give me the counterargument?
I believe what I said is true because I have yet to see "anonymized" data collection that can't be de-anonymized whenever the entity holding the data wants to do it.
"I don't mind downvotes, but I'm honestly curious here -- why is this comment getting them? Can someone give me the counterargument?
I believe what I said is true because I have yet to see "anonymized" data collection that can't be de-anonymized whenever the entity holding the data wants to do it."
They aren't collecting any PII data. Theres nothing they have they could de-anonymouse.
"They aren't collecting any PII data. Theres nothing they have they could de-anonymouse."
Sure there is -- if you have enough non-PII data on someone, then you can identify the person who generated it. And it's been shown repeatedly that "enough" such data is a shockingly small amount.
That said, I was responding to a comment that stated that there's no need to worry because the data is anonymized by pointing out that anonymizing data does not actually mean that much. Of course, that depends on what is meant by "anonymized". For instance, if the data is aggregated with many other people and the original collections are deleted, that's pretty safe, but requires trusting that the original data records are actually being deleted.
"if you have enough non-PII data on someone, then you can identify the person who generated it. And it's been shown repeatedly that "enough" such data is a shockingly small amount."
well, the definition of "identify" there is somewhat subtle, isn't it? You can *fingerprint* them, yes - in that if you see the same data profile again, you know it's the same person. But you don't actually know *who they are*, in the sense of 'this is Joe Bloggs of 41 Lark Terrace'. All you know is it's the same person (or, rather, the same computer) that sent the same profile before.
The bar to actually *figure out where that computer is and who owns it* is somewhat higher. Facebook and Google can do it, of course. I can't see how Canonical possibly could, from this data.
This is a very late reply as I was on vacation, but...
"the definition of "identify" there is somewhat subtle, isn't it?"
I mean "identify" as in "determine the identity of the user", not just "fingerprint the user". Researchers have repeatedly shown this is a trivial thing to do given just a small amount of non-PII data about someone. You don't have to be Facebook or Google to do it, you just have to be able to afford access to to the data, and that's only a question of money. A couple thousand dollars and the use of free data-mining software and you are home free.
if the data is aggregated with many other people and the original collections are deleted, that's pretty safe, but requires trusting that the original data records are actually being deleted.
Exactly. Trusting is naive. Developers tend to disable data/log deletion when something breaks, then forget to turn it back on again after fixing the problem.
Furthermore, there are always rogue managers/employees/volunteers who feel the rules don't apply to them. If the data is collected, there's a real chance someone will use it for nefarious purposes. Doxxing for dollars, maybe, or for noble social justice causes. "Don't worry, we're only targeting fascists!"
I don't mind downvotes, but I'm honestly curious here -- why is this comment getting them? Can someone give me the counterargument?
Beats me. I'm not voting any of these comments; the reeeeeeeee is winning by a landslide.
"this exercise does comprehensively fingerprint the host machine"... 3-18
"The data collected is not PII"... 20-1
I'll submit another unpopular truth: It phones home even if you opt out. Can I get 50 downvotes for this?
While this is small potatoes compared to the very personal data collected by Facebook et al, what I'm looking for is ZERO TOLERANCE for tracking, profiling, and thoughtless analytics-driven decision making. Just a hunch: it actually WORSENS developers' decisions. There is no silver lining.
As long as you opt me in by default into anything, opting out is all you're going to see from me, even if your goddamn survey is going to magically save all Somalian children forever. ASKING is fine; the moment you PUT YOUR FOOT in the door and assume consent I'm reaching for the shotgun, pal.
"As long as you opt me in by default into anything, opting out is all you're going to see from me, even if your goddamn survey is going to magically save all Somalian children forever. ASKING is fine; the moment you PUT YOUR FOOT in the door and assume consent I'm reaching for the shotgun, pal."
I hate to break it to you - but you're a tiny minority. That's why Canonical did this. They need representative data.
Lots of internet commenters say the above, but most people don't actually behave that way, as anyone who's ever designed a system like this will tell you. If you make it opt-out, very few people opt out. If you make it opt-in, almost nobody opts in. That's human nature, apparently. That doesn't mean it's *right* to make things opt-out, of course. It can't answer that question. It's just a fact: opt-out always results in more participation than opt-in.
Agree. Opting in would put Canonical in the position of having to invite the user to join and provide the user with convincing statements to make that happen in a number of cases sufficient for their purposes.
However and beyond that, Canonical and Ubuntu are private organizations. As such, there is no guarantee other than their word that what they are saying is true (many other such institutions have either shaved the truth or outright lied about it), and even if they are being honest and sincere, they can change their minds tomorrow (as many other such institutions have done in the past to the detriment of user privacy).
That is, it is not paranoia if there is 1) a broad and long history in the industry of such promises broken and 2) endless efforts to bury personal tracking policies under heaps of legalese jargon and flowery PR statements about their commitments to "do no evil" etc. There really are a lot of "bad guys" - re personal tracking - out there.
Bravo for their implementation and transparency but, frankly, I'm still going to opt all the hell out because I perceive this to be the thin end of the wedge. Is Canonical going to pop up a notification, asking for my consent, every single time that data file's schema changes because someone decided it would be cool to add an extra field? Do I have the time to vet all those changes, even should they do that?
Perhaps, if GNOME started gathering some basic data on a larger scale about how people use GNOME the project would make different decisions.
Doubt it, if you take the other example (Firefox) it turned into competition between UXers to see how they could out-stupid each other, using metrics to justify their decisions where they could and ignoring them where they couldn't.
This post has been deleted by its author
Wasn't talking about the good linx distro side. I was just referring to the household name bit.
If I went to my family and said Android, they would go 'What about it?'
If I went to my family and said 'Ubuntu', they would go 'You having a stroke or is that a new cordial?'
If I went to my family and said 'Canonical', they would go 'is that a small camera?'
I love my family. I hate the fact I am the only one who works in IT, in my family.
Wasn't talking about the good linx distro side. I was just referring to the household name bit.
You say kleenex, everyone knows it's a tissue, you say hoover, everyone knows its a vacuum cleaner.
You say android, it's a phone to most, unaware as many are that it runs on the linux kernel.
Linux may be all around, but like a popular brand of sewer plumbing it doesn't get much upfront advertising, it's not a popular enough household product to have a household name.
"Canonical makes an easy target for this sort of thing because it's the closest thing Linux has to a household name."
I would have said Android.
There you have it, at least one 'housewife' 'can't tell the difference between whizzo butter and a dead crab'
Android isn't a good household name for 'Linux as it throws the Gnu out with the bathwater and replaces it with private googlies.
Gnome could be nice but for me is more hard for making changes in the bar. I use 2 keyboard layouts and is messy (at least for me) with some desktops as Gnome. LXDE, Lubuntu, Lubuntu Xubuntu or Enlightenment are most easy for changes. Maybe are others like that and at the same time light.
What generated the controversy, in my view, is the need for click-baity headlines in this day and age of advertising-driven, small publishers.
The internet is full of click baity crap so i'm hardly surprised.
I don't know of any other data collection by a large company that offers that level of control
Steam do a hardware survey that allows you to see what is sent to them but it has a lot more information on it than what Canonical want.
aka the 'Microsoft of the Linux World'.
sorry, No, just No.
Linux and BSD were once the only places you could go to avoid the OS Snooping. No longer.
Memo to self, block all Ubuntu and Canonical Domains in home firewall.
If thine own hand offends thee, cut off your own head with a spoon and nuke the vegetable garden.
"I think you need to run wireshark and look at the actual traffic on a minimal install ubuntu. I think you'll be surprised."
It's not going to be very minimal if you've got Wireshark on it. Perhaps you meant tcpdump? Anyway, I've just done a Bionic minimal - https://help.ubuntu.com/community/Installation/MinimalCD - install and there is no sign of any data slurping.
Remember, Canonical's Ubuntu is simply a Linux distro. Whereas kernel.org is where the drivers and compatibility is improved. So what will Canonical do with the data? Email it to kernel.org with suggestions on which drivers to implement first? I am pretty sure the guys at kernel.org will say "shut up and get in line. We work on the drivers that interest us, not you".
So what else is Canonical going to do with the data? Other than sell it of course. No, this is a gateway onto more invasive data collection because they are jealous of Microsoft, Apple, Google and all those other fscks.
Canonical never knows you opted out and you've lost your chance to let the Ubuntu-maker know you didn't like the data collection.''
I'm sorry. Can you explain that? You seem to be saying that if you opt out, a message is sent to Canonical saying that you have opted out.
So either your reporting/logic here is wrong, or you are saying that the package is reporting your opt-out status to Canonical, despite you clicking the box that says you don't want to share anything.
Which is it?
"Which is it?"
Read the article properly. He's saying that if you UNINSTALL as apparently recommended in these YT vids, that is not OPTING OUT, it's just removing the s/w. So a message is not sent to Canonical and consequently they don't know that you've effectively opted out.
Dear Sir,
There's a typo around "date of the hardware"... probably wanted to type data there instead of date...
"... the server doesn't even record the IP it's sent from ... ": How do you *know*? Somebody said so? Or did you actually see what the server is doing? If the server is at all logging access requests, they are very likely also logging the Client IP address. The log entry will have some form of timestamp as well. Do they know when your data record was stored in the DB? If so, GDPR applies, because well all of a sudden they can link the DB record to your IP address, and IP addresses are PII...
Best regards,
Guus
Most people have dynamically allocated IP addresses provided by their ISP. The ISP can identify the account from the IP address and the time, but whether the IP address is enough for the ISP and everyone else probably depends on how long the lease time is for the dynamic IP address.
But even the account owner name does not definitely identify the user by itself, unless only one person uses it. For example, during the week I stay in a shared flat with four other people, and the broadband account is in the landlords name.
Of course, if you pay for a static IP, then yes, it is likely that you will be easier to identify, and of course by combining the IP address with other information (like the cookies in your browser, and whether you're logged in to a Firefox or Google account) many more things can be found out about you (I'm pretty sure Firefox ties together multiple devices I use by profiling the usage pattern, even though I don't enable the sync feature).
Expect this last behavior to increase as time goes by.
As you surmise I have a fixed IP address linked to a registered domain and it would be a maximum of a two step process to find out who I am.
Anyone who thinks they cannot be identified via their IP address when it is associated with the other breadcrumbs that are Hoovered by a Kirby on Turbo out of their 'Improved Browsing Experience' is being silly.
I guess we just trust to Ubuntu not to store IP addresses, some or anywhere as part of the process, or maybe they could file an RFC to propose a method whereby such data might be transmitted to their servers without including such information in the communication.
If you have an always-on connection (like, not dial-up) then the only reason for an ISP to change your IP address every few days is because they get a kick out of updating tables. I think most DHCP servers default to letting you stay on the same address when you come to renewing the lease. It's no less efficient and certainly less effort.
"then the only reason for an ISP to change your IP address every few days is because they get a kick out of updating tables. "
Or because they charge $15 for each static IP and force a new IP address assignment on everyone else just often enough to make it worth paying the extra each month.
By all the downvotes I can assume that BT & Sky, my current and last providers, are unique among the world.
They charge for static IP and my dynamic IP changes every few days, which is why I get you are logging in from a new IP address warnings on a few websites with alarming consistency, across both providers.
Pray tell where in the UK I can get a free static address from?
Inevitably the IP address will need to be a part of the transaction that sends the data to Canonical, but presumably what they mean is that they store only the information that they have said they store, and discard the IP address any anything else that was an "incidental" part of the data transfer?
Personally, I think Canonical's choices are reasonable, but I would certainly agree that they should (probably, legally must) alert users if they wish to collect any additional data (and it would be reasonable to only do so once, whenever a new LTS release is made, as people would understandably and reasonably be annoyed at any more frequent requests).
On the other hand, you have Firefox, who are unfortunately somewhat vague as to what exactly they would like to collect "data _such as_..." (which does not form a closed list), and therefore I'm afraid i always turn that telemetry off. If I could be absolutely certain that no identifying data was sent, I would be more sympathetic, I do understand how telemetry data can be useful (and I mean genuinely useful for debugging and development purposes, definitely not for Teh Evil Spamming).
Tried using both the server and desktop versions for stuff, gave up on both and went back to the previous LTS.
All basically because of the combination of stupid feature decisions and because some basic stuff just flat out doesn't work.
Far too much technical wankery change just for the sake of it breaking stuff, and some really stupid basic faults. I really have serious doubts about how much of this stuff was actually tested or used in anger before release vs. just pissing about feeling smug about a new shiny.
Not that this is exactly uncommon with some of the big projects but this is the first time I've felt compelled to burn out the mess rather than persevere.
Wake me up when the latest theological war is over and some sanity has returned.
If you know exactly what you want (and don't want) then Gentoo is likely a good home for you. It's the only workable way to get pretty much exactly the distro you want, whatever that may be. There are other options that get you kind of close-ish to what you want; and some that get you exactly what you want but are a nightmare to maintain long-term.
I've personally found it just a bit too much hard work to maintain on servers but on my desktop I couldn't live with anything else.
I can't figure out exactly what Ubuntu is going to do with the data they have. We all know what that data looks like; it's a list of pretty much all the intel and AMD processors released in the last eight years with quite a few from before that. The ram table: 512mb, 1gbb, 2gb, 4gb, 6gb, 8gb, 12gb, 16gb, 24gb, 32gb, 48gb. I'm sure it'll be fun to see how many people are running it on something really old (They would see an intel core 2 duo P8600 for an old backup machine from me if I wasn't still on 16.04), but how is that going to help them. They could go to a lot more effort to figure out what users want by involving them directly.
I don't think it's just a list of tech used that's important to them, but what's popular. If only a very tiny fraction uses a particular CPU that has only recently been revealed to have a certain bug, it becomes a very low priority to get a fix for that pushed out as an update. If the great majority of users have 4GB or more, not much point working on squeezing things into 2GB. It's all about setting priorities based on what sort of equipment the bulk of their users use.
@doublelayer - They'll use the data to decide what ought to be the defaults for the next release. They will be making decisions based on actual data rather than someone's wild guesses. A major problem has been that developers often assume that the sort of hardware they have on their desks is typical of what everyone else has.
In the past they've had to make decisions on things such as "should the default install disk be CD sized so that it will work with PCs which have CD drives but not DVD drives, or should it be DVD sized so that the user is less dependent on having network access at the time of installation to install stuff that wouldn't fit on the CD?".
They've also had to worry about things like graphics support, what CPU optimisations to compile in as default (some packages have optional libraries for older CPUs), etc.
Apple know exactly what hardware they ship. Microsoft can simply assume that the non-Apple PC market is the same as the Windows market. Linux distros can't make these assumptions so they either just pull numbers out of the air, use opt-in surveys which are usually wildly unrepresentative of the user base, or do something like this.
Before this they had a detailed opt-in hardware data survey which so few people bothered with that it was pretty much useless. The new one collects far less information, but does so from a sample which will likely be representative of the overall user base.
> They'll use the data to decide what ought to be the defaults for the next release. They will be making decisions based on actual data rather than someone's wild guesses.
Really hoping they're not this stupid. Kind of suspecting they will be though.
The reason it's stupid, is because data like this is extremely easy to game.
As a random example, lets say you're a manufactuer that has a line of custom Linux laptops. Want really good support added to them for nearly no cost? Well then, send in ten or twenty thousand entries for your stuff, randomising things to look legit and using fake source IP info. Make sure the entries are done over time too, so there's no obvious faking attempt.
That's the kind of thing that can be scripted and put into play in just a few hours, and will completely skew stats on what Canonical should be targetting.
And there are likely people/places out there who will do this. Some of them just for the hell of it. Some of them because they just don't like Canonical or compete with them. Either way, the data is way too easy to game and shouldn't be used for business decisions.
@AC said: "As a random example, lets say you're a manufactuer that has a line of custom Linux laptops. Want really good support added to them for nearly no cost? Well then, send in ten or twenty thousand entries for your stuff, randomising things to look legit and using fake source IP info."
Or just send an email to Canonical telling them that you are are a manufacturer who is planning on coming out with a line of custom Linux laptops and that you would like them to work with Ubuntu out of the box on launch. Then ask them if their developers would like some free laptops. They're happy to work with anyone who wants to support Linux.
However, just have a look at the type of information being collected. According to the story it just amounts to the following:
There is basically two types of information there. One is some basic parameters such as RAM, CPU, GPU, hard drive size, etc. That tells you what you should be targeting in terms of hardware resources, and so whether your desktop (e.g. Gnome) is getting too fat for the average user (as opposed to the average complainer, at which point you are far too late to be addressing the issue).
The other is what install options people changed compared to the default install. If most people don't pick live kernel patching, then you know not to make that option the default. If a lot of people are selecting Urdu as the language, then you might want to make sure that language has better default support. Etc.
Ubuntu will publish this information publicly. Personally I am looking forward to the RAM and CPU type data, as that will give me information on what CPU features to target in certain software I have been working on. I have been relying on Steam data, but that may not be very representative of the science and engineering field which my software relates to.
> However, just have a look at the type of information being collected. According to the story it just amounts to the following ...
Apologies, I was trying to explain the concept of why using this kind of data is bad. The example I chose looks like it didn't work for you as it was too specific.
Lets say that you're a competitor of Canonical, or they've somehow managed to piss you off a bunch (they're kind of known for doing that). You'd be able to really screw up their stats by submitting false data.
If they make business decisions based on it, you can lead them up the garden path, so to speak.
I mean, it's up to them what they do with the data... I personally wouldn't use it for anything meaningful though.
Not to mention, after observing other major software projects that rely primarily on telemetry to inform their decisions, relying on telemetry to make design decisions seems to ensure that your software is never going to be better than average, as best. And probably not even that good.
You mean like Firefox's decision to remove the ability to use most of the addons, because most of the people who left telemetry on only have a small number of addons or no addons?
Or how about Microsoft's decision to remove the Start button, since their telemetry data suggested nobody actually uses it anymore?
That latter case may be part of why they're so adamant about forcing everyone to have telemetry on... they don't want to exclude the data from those technically oriented enough to know what telemetry is and how to turn it off. That, and the fact that they don't have beta testers anymore, so the end users have to be the beta testers now.
"... that several of these videos claim the solution is to remove a package that – wait for it – has nothing to do with data collection."
IIRC the video Linux Unplugged obliquely referred to showed that if you opt-in Ubuntu sends Canonical the data and if you opt-out Ubuntu still sends a message but showing that you have opted-out. The video also showed how to remove the packages that apparently send the data. It was made clear that as popularity-contest is a dependancy of the ubuntu-standard meta-package it also takes out a core package that can adversely affect the OS.
Of the few YouTube videos I have seen on this subject none have really objected to what is being sent at this time. There is more a concern that it is "opt-out" and that there is potential for "mission creep" later.
"It was made clear that as popularity-contest is a dependancy of the ubuntu-standard meta-package it also takes out a core package that can adversely affect the OS."
Sounds like FUD. If anyone else has a dependency on popularity-contest, or if it has been installed explicitly, then it won't be removed. Obviously it will be removed if no-one is using it or has expressed any interest in it, but it is difficult to see that as "adversely affecting the OS".
@Ken Hagan
I suppose Linux Unplugged could be distributing FUD.
The fellow that was trying to find a way of stopping all Ubuntu reporting said that removing ubuntu-standard could "adversly affect" the system.
Linux Unplugged were more specific saying that removing ubuntu-standard means that you will not be able to upgrade Ubuntu 18.04 thereafter. I'd call that an adverse effect.
Is this not true?
"there's one thing that must be said very clearly: Canonical is not "spying" on users."
True, because they have an opt-out and call attention to it. It's close to that line, though.
Any collection of data about me, my hardware, or my use of my hardware that is collected and transmitted without my knowledge or consent counts as "spying", no matter how innocuous that data may appear to be.
Any collection of data about me, my hardware, or my use of my hardware that is collected and transmitted without my knowledge or consent counts as "spying", no matter how innocuous that data may appear to be.
Methinks most people would agree that to be "spying" it has to be done without your knowledge. In this case they tell you about it and offer you the chance to opt out, so it can't reasonably be called "spying".
Every decent article I've read about hardening a computer specifically states to avoid broadcasting as much technical details of your box to the outside world as possible.
And every decent penetration testing article I've read specifically looks for technical details of intended targets such as OS, patch level, web browser type and version etc.
Opt out my ass, I for one will: "sudo apt-get --purge remove slurp"
The canvas and footprint of one's browser is already possibly enough to identify machine and user.
I've never really remotely understood why all that crap --- especially browser make and version ( for which their were those jolly little switcher extensions in the olden days ) --- was even vaguely necessary to include in the Ur-Browsers when they started.
I don't really care much about this dispute, nor much of the privacy debate ---- takers should restrain themselves to what's needed at any time, whilst users should man up and expect that when they've submitted something or interacted, information is going to be kept and that they always have, and had, the choice to refrain from doing anything at all --- nor Gnome, KDE all the way !
However, the way this is going, instead of attacking the practices of the, mainly American, but also British and Russian etc. security services; and the spying and intrusions of the, mainly American, and British and EU etc. etc. dying Media ( anyone remember the thatcherite 'News of the World' phoning home ? ), injured people will just devolve into squabbling over the piddly crap instead from a devotion to their own self-importance.
I now demand all the information held here over my upvotes and downvotes since I joined.
I take it this article is discussing a video which at time of publishing has just under 2,500 views.
Seems that people aren't so interested in actually disabling the tracking features as they are about the wider aspect data collection in Ubuntu, the total view count there is quite a lot more.
This post has been deleted by its author
Finally, somebody pointed out other ways to present the options. People are stuck in the current paradigm of binary opt-in or opt-out and one has to be the default.
For some reason I feel the need to quote the band Rush:
"You can choose a ready guide
In some celestial voice
If you choose not to decide
You still have made a choice
You can choose from phantom fears
And kindness that can kill
I will choose a path that’s clear
I will choose free will."
You can see what Firefox is sending to Mozilla if you're concerned with it or merely curious, its not much more than what Canonical's collecting.
On Windows its in the C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\whateverprofile.default\datareporting folder and its in the equivalent locations on Linux and *BSD. I'd imagine its the case on Android also, but my phone's charging at the moment in my bedroom and I can't be bothered to go look (I use Windows and FreeBSD/TrueOS but since there's no Beastie icon, the devil will just have to do).
They're compressed JSON files but you can decompress them and see everything it sends.
HTH. HAND.
as "non personal" identifiable data or that simple "technical details" of your box is somehow harmless but looking behind the scenes at the changelogs in certain "anonymous" sysytem and bug reporting programs in my Linux Mint VM shows that there are changes being made due to privacy concerns.
Check out the latests changlogs to "apport" the "automatic bug reporting" for example:
================
apport (2.20.1-0ubuntu2.16) xenial; urgency=medium
* data/general-hooks/generic.py: Only include JournalErrors for apport-crash
reports which are private by default. (LP: #1738581)
(Might want to --purge remove kerneloops while your at it.)
It doesn't have to be opt-in or opt-out in the way it's often used, where an option is preselected. It's quite possibly to have radio buttons, which if used HTML-style do not have a default one "clicked". The user MUST make a choice, and cannot simply click next. This seems much better for the privacy conscious, since it's not a default setting, and better for Canonical than opt-in because a default of "off" gets them hardly any useful data.
Mint all the way , which is way lighter and which allows all the main desktop environments
"we found a somewhat custom GNOME to suit the essence of Ubuntu. GNOME have the sensation of a modern desktop, bold but rather high consumption for Linux."
https://www.linuxeo.com/linux-os-reviews/linux-mint-vs-ubuntu-comparison.html