Edit: obligatory explanation (thanks mods for squaring me away)…

What you see via the UI isn’t “all that exists”. Unlike Reddit, where everything is a black box, there are a lot more eyeballs who can see “under the hood”. Any instance admin, proper or rogue, gets a ton of information that users won’t normally see. The attached example demonstrates that while users will only see upvote/downvote tallies, admins can see who actually performed those actions.

Edit: To clarify, not just YOUR instance admin gets this info. This is ANY instance admin across the Fediverse.

  • Wander@yiffit.net
    link
    fedilink
    English
    arrow-up
    59
    ·
    edit-2
    1 year ago

    To anyone surprised at this: welcome to the fediverse, please treat everyhing you do or say as public.

    The way to achieve privacy around here is by following the long forgotten arts of the old internet before Facebook was a thing: use a Nick name and don't tell strangers on the internet your real identity.

    Your home instance will act as a proxy and only they have access to your email and IP address. That does stay private.

    So, as long as you trust your home instance to not leak or disclose your connection or sign up data (which would be illegal in EU countries), just sign up with an alias.

    A very positive aspects of this is that it should allow us to detect voting manipulation by correlating the activity of certain potentially malicious actors. If Lemmy instances take vote manipulation seriously and do their best to block bots this has the chance to make Lemmy / Kbin much more transparent and credible than Reddit ever was.

    • abbadon420@lemm.ee
      link
      fedilink
      English
      arrow-up
      22
      ·
      edit-2
      1 year ago

      Lol. kids these days would post their bank info online if the banks didn’t prevent them from doing so.

    • kaba0@programming.dev
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      No, an alias will only give you pseudo-anonymity. Even trivial analysis like counting which words occur together frequently in your writings can reveal with very good accuracy any other alt of you, so the available information of you is basically everything you have shared online with enough accompanying self-written text.

    • DogMuffins@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      I whole heartedly agree with this perspective.

      Additionally, and this is an unpopular opinion, but trying to maintain a Nick or online identity over many years is folly. You end up with a huge repository of personal information, increasing the risk that it can be connected to you personally.

      • NorwegianBlues@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        This has come up as part of those requests to migrate accounts between instances. “I want a persona that stays with me for years”… Is that actually a good idea though!?

    • BitOneZero @ .world@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      1 year ago

      Your home instance will act as a proxy and only they have access to your email and IP address.

      Your home image typically doesn’t proxy image loading, those are hotlinked to the Lemmy server that the image was uploaded to. So your IP address and browser string are going to other Lemmy servers.

      • azuth@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        1 year ago

        The posts just contain a URL which doesn’t include the uploader’s ip address or their browser string.

        • BitOneZero @ .world@lemmy.world
          link
          fedilink
          English
          arrow-up
          0
          ·
          1 year ago

          When the browser loads that URL, hotlinked image, that server has to have your IP address to return the results. Just browsing posts those images are being loaded.

          • azuth@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Of course. They dont get any info to associate your IP with your lemmy account. You could even not have a lemmy account at all.

          • azuth@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Of course. They dont get any info to associate your IP with your lemmy account. You could even not have a lemmy account at all.

  • TimewornTraveler@lemm.ee
    link
    fedilink
    English
    arrow-up
    14
    arrow-down
    2
    ·
    edit-2
    1 year ago

    Edit: Obligatory RIP my inbox.

    Can we leave this kinda stuff behind? It is NOT obligatory.

    • NotMatt@lemm.ee
      link
      fedilink
      English
      arrow-up
      9
      ·
      1 year ago

      I’m going to start throwing “edit: thanks for the gold kind stranger!” on the end of my comments just to induce some nostalgic cringe.

    • Cheems@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      This.

      EDIT: Thanks for the awards kind stranger!

      EDIT 2: Rip my inbox

      This is all examples of reddit shit that is really dumb. We don’t need to bring it over here

  • booty_flexx@lemmy.world
    link
    fedilink
    English
    arrow-up
    8
    ·
    edit-2
    1 year ago

    To illustrate op’s point I’m going to spin up an instance, federate with everyone, and not tell anyone what that instance is.

    Then I’m going to feed all that data into my new website, called Open Lemmy Stats, where anyone can query the user data ive accumulated. The homepage will be ripe with insights, leaderboards and all kinds of data on prolific users.

    Additionally, I’ll display a snapshot/profile of a random user by feeding that users data to GPT4 to make inferences about the user’s political affiliations and display the results.

    Worst of all, I’m not going to out my instance for everyone to know it as the one to defederate. In fact I’m spinning up a few instances that will host innocuous communities that I plan to mod and support to give my instances cover for their true purpose: redundant fediverse datastreams for my site, Open Lemmy Stats.

    I’ll also have a store where anyone can buy my collected fediverse data for a handsome sum.

    Just kidding I’m not doing any of this. But someone absolutely will or already is.

    • agoramachina@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      1 year ago

      You know, I came in here with the mindset that the topic of discussion here isn’t a bad thing; I’m largely pro information-should-be-open-and-available. But you’ve argued a very solid point, and I’ve changed my mind on the issue. I appreciate you sharing this perspective!

    • EurekaStockade@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Honestly, why not? The data is already being recorded. At least this way it’s public and the rest of us get to interact with it. It might even scare a few people into paying attention to the information that they disclose about themselves and increase their digital hygiene.

  • Bill@lemm.ee
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I downvoted the beans and I don’t care who knows about it. I’d do it again.

    This is useful to know though, thanks. I guess assume everything is public short of your password (unless your admin is particularly nefarious and has altered the code to store passwords in plaintext for some reason).

  • madsen@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    Good find, albeit a bit horrifying.

    I wonder what the GDPR implications of this is. As far as I understand, even free, privately run services are required to abide by GDPR and offer data insight and deletion. They’re also required to state clearly what happens to user data.

    Edit: Apparently people have varying takes and feelings on what the GDPR does and does not say, so I urge you to please read the summary of GDPR data privacy here: https://gdpr.eu/data-privacy/ as well as the summary of what constitutes personal data here: https://gdpr.eu/eu-gdpr-personal-data/ It’s easier to have a good and fruitful discussion if we talk about what the GDPR actually says.

  • FinalFallacy@kbin.social
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Isn’t that kind of the point? You don’t get very far hiding in a social setting. You’re on a public website talking to other people. Your posts should be public, comments, etc. At least people should treat all websites or apps they didn’t develop personally like they’re public. I mean you don’t really have a right to privacy in public.

    And I’m not trying to say this with some malicious tone or anything but it’s just my view on it.

  • deweydecibel@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    1 year ago

    Reading these comments, seeing so many excuses, sarcastic responses, and handwaving, makes me realize a great deal of users really need to develop some imagination.

    This is not about privacy. It’s about data that can easily be used for targeting and profiling users, and how that creates countless avenues for targeted harassment and wide scale retaliation. It’s about all of the innumerable ways public vote information can and will be abused to manipulate scoring across the site with targeted/automated shadow banning and shared blocklists. Raise your hand if you trust every single admin to never abuse such a tool to curate the outward appearance of an instance to fit a narrative.

    For a different example: I could say something about how great Nazis are right now, and have a bot programmed to read every single person that downvoted me, add those names to a shared blocklist, and viola, I’ve made myself and all my alts invisible to the people that would challenge me on a massive scale.

    I promise you this is going to be a big issue as tools for this site get more sophisticated over time.

  • dukk@programming.dev
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    Couldn’t we just use a hash for the usernames instead?

    Nothing too over the top, but just a simple hash and match that instead?

    Also, there’s way too much trust in instances. Like, one person could easily make a post on lemmy.world, go on their personal instance, and just give themselves, say, 2000 upvotes.

    Instances should have their own settings on what instances are allowed to keep a local copy. (Default behavior should be to get the post itself from the instance “hosting” it).

    • chris@l.roofo.cc
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      If that is a solution you’d need to change the ActivityPub specification. You are more than welcome to submit your idea.

      Also, there’s way too much trust in instances. Like, one person could easily make a post on lemmy.world, go on their personal instance, and just give themselves, say, 2000 upvotes.

      I’d first have to create 2000 users, then I’d have to send 2000 upvotes. And then I’d get blocked by all instances.

      Instances should have their own settings on what instances are allowed to keep a local copy.

      This is also not compatible with the ActivityPub spec but even if it were you’d win nothing because as soon as you fetch the post it is still on the server.

  • Ubermeisters@lemmy.zip
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    2
    ·
    1 year ago

    How often are we going to see this postage? I think this is the third time I’ve seen it at least

    • Muddybulldog@mylemmy.winOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      You’re following up to a post made almost 3 months ago so it’s not surprising you’ve seen similar since.

      • Ubermeisters@lemmy.zip
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        1
        ·
        1 year ago

        what? oh wow, that is so weird. I’m sorry. I was browsing by Top 6 hour, guess there was a glitch.