this post was submitted on 26 Jul 2023
270 points (94.7% liked)

Fediverse

28417 readers
1304 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 1 year ago (3 children)

Not that I want crypto bros in on this, nor do I really think avoiding the police should even be a goal of Lemmy, but is it possibly to build a fully decentralized Lemmy executing via blockchain or is that gibberish?

[–] [email protected] 5 points 1 year ago

Since you opened up to a response; Yeah. A little bit gibberish. But thats okay.

blockchain is a public ledger. There is no increased anonimity in it. Its core essence is that it is open and public, and everyone can check and validate it. The privacy part comes from not knowing which person is behind which wallet. But hey! You can do that here! Or anywhere.

Looking at the article:

According to Kolektiva, the seized database, now in the FBI’s possession, includes personal information such as email addresses, hashed passwords, and IP addresses from three days prior to the date the backup was made. It also includes posts, direct messages, and interactions involving a user on the server. Because of the nature of the fediverse, this also implicates user messages and posts from other instances.

Focussing on that last part first; Posts, PMs, and other interactions are open and public in the ActivityPub protocol (which lemmy and KBin and Mastodon work on). If the FBI wants that, they can just go to the website and make an account, no raid needed. Blockchain tech wouldnt chance that.

Focussing on the first part: email addresses, hashed passwords, and IP addresses, those are not all open to the public. And you may want to protect those better. But as I said, you dont need hip blockchain for that!

  • Dont use your primary email directly when making an account, but hide behind an email-alias. SimpleLogin, HideMyEmail, Guerilla Email, 10minute mail, Proton Pass, are all services that let you provide an email that is not your own, but does connect to your actual inbox.

  • Dont reuse passwords. Use a password manager to generate random ones for each website. Bitwarden has a good rep. LastPass is still used, KeePass exists, Proton Pass is new and promising.

  • Dont browse without a VPN.

  • bonus (use a privacy focussed browser with extensions that block un-whitelisted javascripts, block trackers, and block canvassing/fingerprinting).

Can your private info now still be obtained? The answer ranged somewhere in between possibly and probably. But you've made it a lot of work. Work that almost only a governmental agency can perform, in a way that takes manpower time and warrants. You'll have to have them very interested in you as an individual to go through all of that.

I compare it to going outside. You wear clothes so that you arent naked, shoes that protect your feet, and if you touch something icky you'll want to wear gloves. The internet is basically the same. Just remember, like outside, most of the internet is a public space. Information that you volunteer, conversations that you have are public. And differently from the real world, they are recorded forever. Need to discuss sensitive stuff in private, switch to "private places" such as encrypted email, Signal, or Matrix based platforms like Element.

Now this post probably isnt complete, and flawed. So I welcome anyone who wants to build further from it.

[–] [email protected] 2 points 1 year ago

Doesn't really help anything.

Things on the blockchain are still easily readable in most cases. For example: https://www.blockchain.com/explorer

You can go see ANY bitcoin transaction which has ever occured.

I also don't think blockchain would scale performance wise, to the level needed by lemmy. In the example of bitcoin, processing transactions is already painfully slow.

For encryption, its easiest to just enable in-place data encryption on your instance.... But, again, that does not help ANYTHING, because all of your data is replicated to every other subscribed instance.

Hell, the Feds don't even need to seize your server. They just need to federate with it.

[–] [email protected] 1 points 1 year ago

It would be possible to have a fully decentralized Lemmy. For example, just have everyone self host an instance and perhaps change how caching works. But there's a downside of being harder for users to use and more duplation of moderation.

Federation is a balance between the decentralization and centralization