Warning: Lemmy doesn't care about your privacy, everything is tracked and stored forever, even if you delete it
raddle.me

Federated services have always had privacy issues but I expected Lemmy would have the fewest, but it’s visibly worse for privacy than even Reddit.

  • Deleted comments remain on the server but hidden to non-admins, the username remains visible
  • Deleted account usernames remain visible too
  • Anything remains visible on federated servers!
  • When you delete your account, media does not get deleted on any server
  • ffmike@beehaw.orgEnglish
    40·
    3 years ago

    In my opinion it’s unreasonable to think anything can truly be deleted in a federated system. Even if the official codebase is updated to do complete deletion & overwrite, it’s impossible to prevent some bad actor from federating in a fork that just ignores deletion requests.

    Seems sensible to just not post anything that you don’t want to be available for the lifetime of the internet.

    • alyaza [they/she]@beehaw.orgMEnglish
      22·
      3 years ago

      In my opinion it’s unreasonable to think anything can truly be deleted in a federated system.

      yeah like. this is just a byproduct of how federation works currently. i don’t even know how you’d begin to design a federated system where some of these critiques can’t be levied

      • Gaywallet (they/it)@beehaw.orgEnglish
        7·
        3 years ago

        Anything that is visible to another party can be hijacked - even a 1:1 communication does not guarantee that the other party doesn’t capture the data and then spread it. The only things that are private are thoughts that you have which are not shared with others in any fashion. As soon as information is shared in any fashion, it is not private.

        Past this point it’s a matter of how private you think is reasonably private. You could design a system where users are in control of their own data through a series of public and private keys, ensuring that keys must be active to view content, but as stated above even in such a case and the user revoking keys does not stop other people from making copies of said data. This is akin to screenshotting an NFT. For all intents and purposes, a copy of the data as it existed at the time of copying is now publicly available.

        Quibbling over the fact that you’re the one who “truly owns” the data when it comes to something like social media feels like a mostly pointless endeavor because the outcome (data is available for others to view/consume/read/etc) is the same regardless of who “owns” it. Copyright law will apply to anything you produce, if it comes to legal problems (someone copies your artwork and sells it, for example) and having a system to prove you own it is primarily a formality to make it easier to prove ownership. Generally people aren’t arguing through this lens, however, and are instead arguing through the privacy/security lens - that they don’t want people stealing/selling their data, which lol, good luck. AI models are proof that no one in the world actually cares about this ownership if they reasonably think they can get away with using your data without any real incentive to not do so - interestingly copyright law and models being trained on corporate data such as movies are a vector by which the legality of this might actually stop or slow AI development and protect the end-users data.

    • pkulak@beehaw.orgEnglish
      7·
      3 years ago

      This is how I treated Reddit too. And Twitter. And everything else. I have two modes; public and private. And private is private; strong encryption and local storage. Having some middle ground is a recipe for disaster.

    • CoffeeBot@lemmy.caEnglish
      4·
      3 years ago

      Exactly. Even a server to just go down one day. Theoretically it has a snapshot in time

  • lowleveldata@programming.devEnglish
    34·
    3 years ago

    It is reasonable that people should be able to delete their posts / comments. However I don’t see how is this related to “privacy”. How can something you post on a public forum be private?

    • rstein@discuss.tchncs.deEnglish
      9·
      3 years ago

      You can’t delete a mail you sent me, nor put your hand written letter to me in the bin. I can keep both and I can keep your name and addresses in my little black book. So there isn’t even that level of privacy in the real old fashioned communication.

      And communication over the Internet was always the subject of storage. Your mail may be on the backup tape of a mail server. Your usenet posting is on archive.

      So the assumption that the fediverse can forget….

      • GiantBasil@beehaw.orgEnglish
        9·
        3 years ago

        There’s long dead people’s very private letters and diaries in museum’s and public archives. Really available on the internet now. So that’s not even a failing of the internet, if you write something people find interesting, they’ll find a way to preserve it.

        I’m not sure how they think the fesiverse will be the one to solve that.

      • __forward__@lemm.eeEnglish
        1·
        3 years ago

        Blockchains have the property of being append-only, so a blockchain is precisely what makes it impossible to delete transactions. That being said, in a distributed system, once the message leaves trusted servers, it is obviously also impossible to delete it.

  • Retronautickz@beehaw.orgEnglish
    21·
    3 years ago

    The illusion of Privacy is Mastodon (or social media in general)

    There’s a reason why when you go to “private mentions” on Mastodon, this appears:

    Private mentions. Post on mastodon are not end-to-end encrypted.Do not share any sensitive information over Mastodon

    While yes, we should be able to delete our content if we want, but it’s a bit naive to think there could be true privacy in any decentralised social media platform.

    There’s a reason why one of the think people tell you when you come to the fediverse is not to share personal and sensible information.

    • BitOneZero@beehaw.orgEnglish
      9·
      3 years ago

      While yes, we should be able to delete our content if we want, but it’s a bit naive to think there could be true privacy in any decentralised social media platform.

      Especially an email or “reddit” threaded conversation systems where quoting of messages is routine. Here I am, quoting you.

      You are putting a billboard up in public, on a bulletin board in the center of the Internet, the assumption should be that anyone can photograph it.

      • Retronautickz@beehaw.orgEnglish
        4·
        3 years ago

        Exactly.

        That with the addition that the function of thread-like social media is being a place to discuss topic and share information/knowledge. So content needs to be kept even if the account that posted it exist no more. The contain remaining when the account gets deleted is a feature, because otherwise important information could be lost.

        Content deletion should be an option, but the content remaining if you delete your account its a needed feature for this type of platform

  • nerodessertking@beehaw.orgEnglish
    18·
    3 years ago

    i mean raddle is a site that has an anti doctor post pinned in the mental health community … like c’mon I and many others need medicine to survive and you are encouraging anti-psychiatrist posting, Church of Scientology levels of anti-medicalist posting

    • SharkEatingBreakfast@beehaw.orgEnglish
      1·
      3 years ago

      That’s fucking ghoulish.

      — someone who has to do that shit in order to have a stable life where I don’t want to end it all on a daily basis

  • loving_kindness@midwest.socialEnglish
    18·
    3 years ago

    Anything put on the internet is forever. No one should be publicly posting anything with the expectation that they have any control of it after it goes out. If it’s not held by the server, there’s the way back machine or even just folks taking screenshots.

      • Eufalconimorph@beehaw.orgEnglish
        7·
        3 years ago

        It’s the Internet Corrolary to Murphy’s Law: your embarrassing posts will be available online forever, but any useful information you want to find later will have been deleted when you next look for it.

      • GiantBasil@beehaw.orgEnglish
        4·
        3 years ago

        The internet is forever, except that one thing you really want to find from years ago. That’s the rule.

  • kool_newt@beehaw.orgEnglish
    15·
    3 years ago

    The fediverse is the real internet, it’s not a company providing a service. On the real internet, once something gets out there, there can never be a guarantee that it’s taken back. Even on Reddit, once you post something, Reddit might fully delete it but someone out there may have copied it.

    • marco@beehaw.orgEnglish
      5·
      3 years ago

      Multiple people reported Reddit undeleted stuff they had deleted from their accounts recently …

      • zbyte64@lemmy.blahaj.zoneBannedEnglish
        1·
        3 years ago

        That’s why you rewrite your old comments to actively steer people away from the site. ASCII rocket ships, Lemmy links, etc

  • ManeraKai@programming.devEnglish
    15·
    3 years ago

    Opposite to Instagram or Facebook, on Lemmy or Mastodon you can create an anonymous account. Yes it will be logged (normal public internet), but you won’t be treacable. The UI doesn’t have any tracking scripts, and many instances don’t require an email even to sign up. Use the Tor browser to spoof your IP.

    • Barry Zuckerkorn@beehaw.orgEnglish
      2·
      3 years ago

      There are certainly ways to manage your privacy in how you use this service, and it’s different in a lot of ways from other services out there. Users should be educated on the risks against different types of threat models:

      • In what ways can my comments be linked to my real world identity, through correlation to my username, registered email address/phone number/Matrix ID/other identifier, by other users of this service?
      • In what ways can my comments and activity be linked to my real world identity by site administrators or other privileged users of the service (through access to things like server logs, trackers, etc.)?
      • How can I control what activity I consider to be public or private on this service, and who can view that activity I prefer to be considered private?

      Even with end to end encryption (which Lemmy does not have for DMs), the most secure protocol is only as secure as the other end you don’t control. People can and will screenshot, save, log, or simply remember what you’ve sent them before.

      Lemmy and ActivityPub are new services and protocols to a lot of people. The shortcuts they have internalized on what is or isn’t true about privacy of other services (Facebook, Instagram, TikTok, Snapchat, Reddit, plain old email, cell phones, WhatsApp, iMessage/Facetime, etc.) need to be re-learned for these specific services.

      New users should understand that the Lemmy/ActivityPub protocols on deletion or privacy of DMs don’t necessarily work like other services they’re used to. And we should encourage robust discussion around these things until they become common knowledge.

  • BitOneZero@beehaw.orgEnglish
    14·
    3 years ago

    Given the beta status of Lemmy, I don’t even think it’s a great idea to give the appearance of privacy. I think the core purpose of a webapp like Lemmy is public messages.

    I think it’s a can of worms for server operators to get into the business of thinking they can safely hold private messages between users/strangers. None of the Lemmy instances I’ve joined have had a “terms of service” or anything like that on SIgn Up, I really think the message should be sent far and wide that Lemmy is about posting IN PUBLIC and that messages are being FEDERATED to peers, even people that you don’t know could be collecting the data for a search engine.

    With small-time server operators opening up hundreds of Lemmy instances, without giving away their experience or human identity, how can you have any confidence that someone is properly securing a server they only have part-time job to update and operate? Major corporations are having their database stolen, Valve, Sony, Nintendo, health care companies, mobile network companies (AT&T)… you think a low-budget shoestring server by a hobbyist running Lemmy should be held to the same standards as a corporation who has an entire team and services to defend their data?

  • Dee@beehaw.orgEnglish
    13·
    3 years ago

    Damn, Raddle seems worse than Reddit when it comes to toxic attitudes. I never looked much into it since it’s just another centralized platform like Reddit with different management, but boy oh boy are those comments just awful. Great community you folks got over there 😬

  • GadgeteerZA@beehaw.orgEnglish
    7·
    3 years ago

    Not sure what the point of “Mastodon’s” opinion is? Firstly, Mastodon is pretty big and decentralised, and it has no-one who really speaks on behalf of all its users. Lemmy is not a privacy central network like a direct messenger service. It never claimed to be privacy centric as far as I know. The point is to share posts in communities, and the more that see them, the better.

    But it is federated which means posts do get shared to other servers everywhere, and deleting those is not as easy as for a centralised server. Whatever I post on any sharing type service, I consider to be public.

  • Grizzzlay@beehaw.orgEnglish
    6·
    3 years ago

    I don’t think much of Mastodon as it is, so they’re free to rag on Lemmy all they want.

  • slartibartfast42@beehaw.orgEnglish
    6·
    3 years ago

    I would encourage you to stay as far away from Raddle as possible. It has an incredibly toxic site-wide culture, and some serious security problems.