this post was submitted on 17 Jul 2023
22 points (92.3% liked)

Privacy

31993 readers
521 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Hi all, I'm pretty new to the fediverse and have tried learning about the way it works. I have tried finding some information in vain, so I have ended up mostly reasoning about it by drawing parallels with other non federated systems but I feel it's not accurate.

I am trying to understand three things:

  1. What information does the instance(s) have on their users?
  2. What information can users get on other users?
  3. What information can the infrastructure providers get on users of the fediverse?

To answer (1), I am guessing the admins of the instances have access to the typical metadata relating to the device from which a user accesses (IP address, device info, app/browser).

Regarding (2), it's not as clear. As of yet, it seems it is only possible to look at posts and comments and creation date. It doesn't seem possible to get a list of subscribed communities nor email address used for registration (when applicable).

Now I wonder if the instances do have all lists of subscribed communities? I'm guessing yes. What about private messages, are they end to end encrypted and inaccessible to the fediverse?

And finally, what access do the internet infrastructure providers have access to? All the same information as the instance admins/mods? More? Less?

Thank you for helping me weed through this new environment and learn about the fediverse.

Also, if you have some best practices on how to mindfully navigate in the fediverse with privacy in mind, please share, I would be grateful.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago

Thank you for all your answers, they were very informative. Yes, in the end, it is a social network, it is normal that all activity us public. There also seems to be some trust involve when choosing an instance on which to create an account. And eventually, as one accesses other instances, the private information propagates.

From what I understand, it's also up to the instance to allow account creation with/without email. They also need to fight bots so most seem to require it.

The PM being public is a bit of a surprise and yes there is a warning at least.