I use Dynadot, and they actually pass the "domain tasting" on to the customer: you have a couple of days to cancel your domain registration for a full refund.
As a customer, I highly recommend Dynadot (low prices like NameCheap, but a nicer interface - I tried both registrars when I switched my domains away from DreamHost).
You can revoke a link. Go to the shared album page. (clicking on the link will take you there) Click the options menu item and there is a toggle for link sharing that will revoke the magic url and token.
You can revoke sharing links, but there are also direct links to photos that work for unauthenticated clients. They aren't presented in the UI as a sharing option; you have to use your browser to copy the link. In other words the only way to make these links public is through intentional user action.
This shouldn't be true any more, I just tried it out by grabbing the lh[0-9]* url for the image bytes and that won't open in an incognito browser without a Google Login. Can you share with me how to reproduce this "url copy"? If you want to send it privately just tack gmail.com onto my username.
Or you can file feedback from the photo web page and just tag me in it.
I just tried it with an lh3 url I got from chrome, opens fine in incognito. Repro easily: from /photo/ page, open image in new tab; copy address to incognito; expected: login challenge, actual: photo.
Anyone can go on archive.org and verify that they changed their color scheme and header to ones very similar to CatchJS in Feb 2020, after CatchJS had used that look for 2 years. Thank you for also pointing out the pricing page, where the same is true.
I've now received a cease and desist from their attorney stating that the looks are too similar. It's nice that they've paid for an attorney to make my point for me, but they seem to have mixed up who did what here.
If I had to ask for a feature, it would be to make this "layouts for the browser" instead of/in addition to "in the browser". Where the output would be html/css to do the masking so you could assign an image to each panel.
You can assign an image to each panel by double-clicking the panel and uploading the image. It does the masking through svg. You can then save off the SVG by going to preview mode and saving. Sorry that wasn't intuitive. TBH I was trying to prioritize a minimal, efficient, and effective workflow over first-time intuition. Another person suggested I make an instructional video, which is probably a good idea. I'll try to do that this evening when I'm free.
And that was half of this post, the blog was as much about using their new product to track this problem as it was about finding the problem. Kudo's to solving a problem you find while making the product.
How not to report about how not to acknowledge a data breach includes dubbing silly music over the other guy speaking to further prove your smugness. While it is always fun to say I told you so, you can still be professional about it.
