9
Activitypub (lemmy.ml)
submitted 1 year ago by Philo@lemmy.ml to c/privacy@lemmy.ml

Is this a good idea for privacy?

top 13 comments
sorted by: hot top controversial new old
[-] shortwavesurfer@monero.town 18 points 1 year ago* (last edited 1 year ago)

Your instance knows

  • Your IP address
  • Your E-Mail (if provided
  • Your password (salted of course)
  • Your session type (browser, app, etc)
  • Your interactions (posts, comments, saved, upvotes, downvotes, etc
  • Your social graph (following and followers, etc)

Everyone in public knows

  • Your session type (optional)
  • Your interactions (posts (if set public), comments, saved (depending on service), upvotes, downvotes, boosts, etc)
  • Your social graph (may be optional depending on service)
[-] 133arc585@lemmy.ml 0 points 1 year ago

How is session type made available in the federation? I wasn't aware that was shared on the protocol.

[-] shortwavesurfer@monero.town 1 points 1 year ago

Im not sure, but on mastodon for example you will often see tusky, or web, etc at the bottom of post details. https://digitaldarkage.cc/@shortwavesurfer2009/110691099097120908

[-] Voxel@feddit.de 1 points 1 year ago* (last edited 1 year ago)

You can disable it, in the settings. Still a feature which shouldn't be there in my opinion.

[-] 133arc585@lemmy.ml -1 points 1 year ago* (last edited 1 year ago)

Hmm good point. I guess it is optional though so on the client end you can probably avoid sending anything (or just spoof as "web" at worst).

[-] shortwavesurfer@monero.town 2 points 1 year ago

I know mastodon has a checkbox to disable it from the server end.

[-] Grouchy@lemmy.grouchysysadmin.com 15 points 1 year ago

Nope. It's public. Assume everybody has a copy of everything sent over ActivityPub.

[-] j4k3@lemmy.world 8 points 1 year ago

Only your instance host could monitor your personal metrics and fingerprinting. These are what are so invasive with big tech.

Everything you post here as content is public and can be scraped you should assume everything will be mined for data.

They can't see your IP, dwell time, votes, what you read, what you didn't read, and most importantly they can't inject content into a structured echo chamber and observe how you react.

[-] 133arc585@lemmy.ml 4 points 1 year ago

Only your instance knows your IP and what links you visited. But everyone can see your votes.

[-] j4k3@lemmy.world 2 points 1 year ago

How does everyone see votes? I looked in the page source and could find comments but not votes

[-] 133arc585@lemmy.ml 1 points 1 year ago

If you host a federated instance you can see all votes. Some platforms display votes in the UI (kbin I thought? by hovering over the vote button or score). I figure it's only a matter of time before someone puts up a website to just see people's votes.

load more comments
view more: next ›
this post was submitted on 13 Jul 2023
9 points (73.7% liked)

Privacy

32177 readers
742 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS