At this point, I’m not even going to bother trying to go on there anymore.

    • Cyborganism@lemmy.ca
      link
      fedilink
      arrow-up
      131
      arrow-down
      6
      ·
      7 months ago

      Well you shouldn’t trust a public, decentralized, open source personally hosted service either.

      I don’t really know who’s hosting the Lemmy or other fediverse services I use and what access they have to the data that we post on there.

      Basically, you shouldn’t trust any online service with your data and your posts.

          • LemmyHead@lemmy.ml
            cake
            link
            fedilink
            arrow-up
            2
            ·
            7 months ago

            Depends on how they’re implemented. Signal and WhatsApp are e2e encrypted, but they track your phone number, your contacts and IP address. Maybe even metadata

      • Jo Miran@lemmy.ml
        link
        fedilink
        arrow-up
        24
        arrow-down
        5
        ·
        edit-2
        7 months ago

        I went the other route. I am very noisy online. I post and comment all over the place but I treat all of that as what it is, content I have given away freely and publicly. Now, when I need to do something privately, you are going to need serious mojo to be able to dig it out. Plus, who would assume that I do certain things privately when almost everything I do is out in the open.

        • tetris11@lemmy.ml
          link
          fedilink
          arrow-up
          13
          arrow-down
          2
          ·
          7 months ago
          SELECT 'ipaddress', 'username' FROM tables
          WHERE (username.normalize() == "jomiran" 
          OR post.links CONTAIN "jomiran") 
          FILTER content IN _blacklist_keywords;
          

          Or some such. Data is easy to mine if you have a target. It’s finding unknown targets that is hard.

          • Jo Miran@lemmy.ml
            link
            fedilink
            arrow-up
            5
            arrow-down
            1
            ·
            7 months ago

            Exactly. Do a search for my username and get flooded with shitposts. IP? MAC? Same, plus some porn watching and way too much YouTube. Everything I want to keep private is done with as many degrees of separation as possible.

              • Jo Miran@lemmy.ml
                link
                fedilink
                arrow-up
                5
                arrow-down
                4
                ·
                7 months ago

                I use disposable hardware (one time use) and unique, pre-configured remote access points from third party locations for my work. In other words, many little headless Raspberry Pis everywhere.

        • delirious_owl@discuss.online
          link
          fedilink
          arrow-up
          3
          ·
          7 months ago

          I have 10 Facebook accounts, a few with my real name and about 20 google accounts.

          The real accounts that I use are created and destroyed frequently.

      • Artyom@lemm.ee
        link
        fedilink
        arrow-up
        9
        ·
        7 months ago

        You can trust that the service will persist. The fediverse is practically speaking unkillable since no one group holds all the strings. The trade off is that any data you post is shared freely with all. At least it’s clear from the start and no one is profiting off of it. Unlike Reddit, you know exactly what’s going on as soon as you sign up.

      • TheAnonymouseJoker@lemmy.ml
        link
        fedilink
        arrow-up
        6
        arrow-down
        3
        ·
        7 months ago

        …and this is how “rational” people act more irrational than irrational people. Arguments that are reductionist tautological absurdities.

        Open source culture is far more transparent and trustworthy than the 100 headed monster Hydra that is Western Big Tech companies, fully armed with neuro scientists and western capitalist media machinery. There are a few bad apples in FOSS culture, but they can be easy to spot for a few people, and that works as long as people actually listen to those few people.

        • Cyborganism@lemmy.ca
          link
          fedilink
          arrow-up
          7
          arrow-down
          1
          ·
          7 months ago

          Take a chill pill.

          All I’m saying is whatever the service, be careful what you post online. We assume the people hosting fediverse services have a code of ethics or that they have our best interests or privacy at heart. Or even that they have the time and know how to protect our data.

          But we should still consider the opposite and take the necessary precautions.

          • TheAnonymouseJoker@lemmy.ml
            link
            fedilink
            arrow-up
            3
            arrow-down
            1
            ·
            7 months ago

            I am good, it just sounded very absurd. There is no “both sides” in credibility of open source vs closed source ecosystems.

            I think we can judge Lemmy instances dependingly, for example I trust the dev instance and Lemmygrad instance quite a lot and stick to them. I distrust instances like Lemmyworld, lemmy.one and some others. All instances that connect to the ones I use will be able to scrape my comment data, which is public and which is fine (well not but AHs gonna AH) because I teach and advise on OPSEC, stylometry and other stuff.

            A much better way to spread the message is telling people how they can be mindful of firstly judging how “public” a space is, and then how and what you type/record and share.

        • Live Your Lives@lemmy.world
          link
          fedilink
          arrow-up
          10
          ·
          7 months ago

          Just because you shouldn’t trust them doesn’t mean you’re not allowed to interact with them. It just means you need to be careful.

      • dumpsterlid@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        7 months ago

        Of course you shouldn’t but there is a categorical difference between the risk of a corporation exploiting you because of a power imbalance (you want to use Reddit, there aren’t alternatives in this hypothetical scenario) and the rando running your fediverse instance abandoning the project or being weird about your data.

        The second category can definitely be problematic, but it just isn’t the same level of awfulness and systematic exploitation that corporations wield every day to extract a profit.

        It sounds like a weird statement because we have been trained to think the average “other” we will encounter in society as dangerous, but if you actually think about the statistics then yes absolutely it makes way more sense to trust a random person or handful of people to run your instance than a corporation. Publicly traded corporations are legally required to be assholes in the pursuit of profit, on the other hand most of the time randos usually aren’t assholes, though to be safe you should always be cautious as you say.

          • dumpsterlid@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            edit-2
            7 months ago

            Sure it could happen, but I don’t understand what relevance that has when you compare it to the fact that you KNOW without a shadow of a doubt corporations are going to sell your data to the maximal amount they can, even if it is illegal.

            Besides this isn’t about our data being sold or not being sold really (our data will be mined and sold by somebody so long as it is publicly available on social networks), it is about who has the power and who doesn’t. Does a single corporation run by a billionaire fascist-baby have the power or an imperfect constellation of developers, instance maintainers and moderators?

      • 乇ㄥ乇¢ㄒ尺ㄖ@infosec.pub
        link
        fedilink
        arrow-up
        2
        arrow-down
        2
        ·
        7 months ago

        I guess what I mean by not trusting is : I’m not going anywhere near that website, since I use Lemmy this means I put some trust in it…

        But ultimately yeah, self-hosting is the way to go and that’s what I’m planning to do, it’s just not as simple as people make it seem to be

        • CaptDust@sh.itjust.works
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          7 months ago

          Hmmm, from a tech perspective there’s lots of VPS hosts that provide dashboards to deploy a CMS in one click (Ghost, WordPress, etc.), in that way it’s never been easier to get started. The hard part though is gaining visibility and publishing enough content to give people a reason to visit.

          • 乇ㄥ乇¢ㄒ尺ㄖ@infosec.pub
            link
            fedilink
            arrow-up
            5
            arrow-down
            1
            ·
            7 months ago

            In my opinion, one of the main benefits of selfhosting ( aside from controlling your data,) is that you don’t have to pay for the VPS/CMS service, of course you pay for the infrastructure… As someone who HATES monthly subscriptions it’s one of the main reasons I don’t have an online presence yet

            I tried to run Ubuntu server and slapped something on top of it ( CasaOS ), which i didn’t like, then I tried Ghost ( and failed miserably )…

            It’s not easy and YouTubers are full of shit ( they skip so many details )

            • CaptDust@sh.itjust.works
              link
              fedilink
              arrow-up
              2
              ·
              edit-2
              7 months ago

              To each their own, that can be a benefit but youll still need to buy hardware, maintain the server software and maybe rent rack space (if you need bandwidth).

              My tiny slice of the web hosts a private image gallery for my family to upload and share photos. Going into it I wasn’t really interested in administering yet another server. Instead I threw $6 at a VPS and had a publicly accessible, user friendly site with backups up and running in about 15 minutes… and I haven’t had to think about it again since. And Google/Meta isn’t training their AI on my niece’s birthday pictures. That monthly sub is worth it for reclaiming my time.

              • 乇ㄥ乇¢ㄒ尺ㄖ@infosec.pub
                link
                fedilink
                arrow-up
                3
                arrow-down
                1
                ·
                7 months ago

                That monthly sub is worth it for reclaiming my time

                Yeah definitely, it’s a small price for the benefit, but also to add to how I feel about subscriptions, I think their major flaw is they don’t consider poor parts of the world like Africa were I live, while 6 $ is reasonable or even cheap for some people, here it’s a lot of money ( x200 which means 1$ = 200 ), so it’s not accessible…

                Only few, very few websites change their pricing based on my IP address, or send me to a different domain, but for the most part it’s not affordable

                You might ask, does you ISPs have VPS plans ? Yes they do,

                Tap for spoiler

                waaaay more expensive than European VPSs combined … LoL…

                There’s also politics and agenda involved but won’t get into it, it’s just bad news, and we have enough of that already

                • CaptDust@sh.itjust.works
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  edit-2
                  7 months ago

                  The currency situation makes sense and I apologize-- I realize now I had a very western-centric perspective while writing my thoughts. I can absolutely understand hosting on your own hardware, as the opportunity cost in that situation is hugely different. I think the next best option is a good server OS and the ghost docker container but you are right it is not as straight forward or easy. Best of luck friend, trust documentation not youtubers :)

    • Tb0n3@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      9
      ·
      7 months ago

      Could have learned that a long time ago. Everybody learns it somehow from some greedy company. Luckily you’ve learned it now.

    • sturlabragason@lemmy.world
      link
      fedilink
      arrow-up
      3
      ·
      7 months ago

      Same.

      I’m switching everthing over to federated, self-hosted, decentralized, open source…

      It’s a brave new old school world!