this post was submitted on 30 Mar 2024
1064 points (98.4% liked)

Privacy

32120 readers
348 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

At this point, I'm not even going to bother trying to go on there anymore.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 122 points 7 months ago (9 children)

Well you shouldn't trust a public, decentralized, open source personally hosted service either.

I don't really know who's hosting the Lemmy or other fediverse services I use and what access they have to the data that we post on there.

Basically, you shouldn't trust any online service with your data and your posts.

[–] [email protected] 30 points 7 months ago (1 children)
[–] [email protected] 6 points 7 months ago (1 children)

Or just use e2e encrypted services. They can be trustless and still useful.

[–] [email protected] 2 points 7 months ago

Depends on how they're implemented. Signal and WhatsApp are e2e encrypted, but they track your phone number, your contacts and IP address. Maybe even metadata

[–] [email protected] 18 points 7 months ago* (last edited 7 months ago) (2 children)

I went the other route. I am very noisy online. I post and comment all over the place but I treat all of that as what it is, content I have given away freely and publicly. Now, when I need to do something privately, you are going to need serious mojo to be able to dig it out. Plus, who would assume that I do certain things privately when almost everything I do is out in the open.

[–] [email protected] 10 points 7 months ago (1 children)
SELECT 'ipaddress', 'username' FROM tables
WHERE (username.normalize() == "jomiran" 
OR post.links CONTAIN "jomiran") 
FILTER content IN _blacklist_keywords;

Or some such. Data is easy to mine if you have a target. It's finding unknown targets that is hard.

[–] [email protected] 4 points 7 months ago (1 children)

Exactly. Do a search for my username and get flooded with shitposts. IP? MAC? Same, plus some porn watching and way too much YouTube. Everything I want to keep private is done with as many degrees of separation as possible.

[–] [email protected] 0 points 7 months ago (1 children)

IP? MAC? Same

Unique fingerprint? Most likely the same with your "private" stuff.

[–] [email protected] 1 points 7 months ago

I use disposable hardware (one time use) and unique, pre-configured remote access points from third party locations for my work. In other words, many little headless Raspberry Pis everywhere.

[–] [email protected] 3 points 7 months ago

I have 10 Facebook accounts, a few with my real name and about 20 google accounts.

The real accounts that I use are created and destroyed frequently.

[–] [email protected] 9 points 7 months ago (1 children)

You can trust that the service will persist. The fediverse is practically speaking unkillable since no one group holds all the strings. The trade off is that any data you post is shared freely with all. At least it's clear from the start and no one is profiting off of it. Unlike Reddit, you know exactly what's going on as soon as you sign up.

[–] [email protected] 1 points 7 months ago* (last edited 7 months ago)

True, I am safest alone in my dank basement

[–] [email protected] 1 points 7 months ago* (last edited 7 months ago) (1 children)

Of course you shouldn’t but there is a categorical difference between the risk of a corporation exploiting you because of a power imbalance (you want to use Reddit, there aren’t alternatives in this hypothetical scenario) and the rando running your fediverse instance abandoning the project or being weird about your data.

The second category can definitely be problematic, but it just isn’t the same level of awfulness and systematic exploitation that corporations wield every day to extract a profit.

It sounds like a weird statement because we have been trained to think the average “other” we will encounter in society as dangerous, but if you actually think about the statistics then yes absolutely it makes way more sense to trust a random person or handful of people to run your instance than a corporation. Publicly traded corporations are legally required to be assholes in the pursuit of profit, on the other hand most of the time randos usually aren’t assholes, though to be safe you should always be cautious as you say.

[–] [email protected] 1 points 7 months ago (1 children)

What’s to stop a data broker from running an instance?

[–] [email protected] 1 points 7 months ago* (last edited 7 months ago)

Sure it could happen, but I don’t understand what relevance that has when you compare it to the fact that you KNOW without a shadow of a doubt corporations are going to sell your data to the maximal amount they can, even if it is illegal.

Besides this isn’t about our data being sold or not being sold really (our data will be mined and sold by somebody so long as it is publicly available on social networks), it is about who has the power and who doesn’t. Does a single corporation run by a billionaire fascist-baby have the power or an imperfect constellation of developers, instance maintainers and moderators?

[–] [email protected] 1 points 7 months ago

You could message the instance admin on matrix and get to know them...

[–] [email protected] 1 points 7 months ago

What about a whiteboard?

[–] Reverendender 1 points 7 months ago (1 children)

You...you realize you just posted right?

[–] [email protected] 10 points 7 months ago

Just because you shouldn't trust them doesn't mean you're not allowed to interact with them. It just means you need to be careful.