this post was submitted on 15 Dec 2024
197 points (98.0% liked)

Fediverse

28688 readers
743 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 2 years ago
MODERATORS
top 38 comments
sorted by: hot top controversial new old
[–] solrize 35 points 3 days ago (3 children)

That doesn't sound good? They are privacy invasive.

[–] [email protected] 44 points 3 days ago (1 children)

FWIW they should be configurable in your browser, either directly or with a plug-in.

The post makes a pretty reasonable argument as to why it's a good idea.

[–] solrize 16 points 3 days ago (1 children)

Yeah, browser vendors think the same thing, since they are part of the commercial web. Anyway, at minimum, sending referer should be opt-in rather than opt-out.

[–] [email protected] 2 points 2 days ago

According to ths post it will be opt-in, on the instance side.

So smaller instances where there-might be risks associated will be opted out by default, while large instances that might want the attention and where individual users stand out less can opt in.

[–] [email protected] 27 points 3 days ago (1 children)

It's the instance admins' decision whether they want it or not.

Talk to your admins or move to another instance if you disagree with them

[–] solrize 8 points 3 days ago (1 children)

I'm not personally affected since I don't use Mastodon. That doesn't make it a good idea.

[–] [email protected] 23 points 3 days ago (1 children)

I guess it depends on what you want. If you want to be totally anonymous on the internet, then it's a bad idea. If you want people to use Mastodon, then it's probably an OK one, since the way people use microblogging is to follow famous people, and famous people aren't using Mastodon unless there's evidence that there's an audience there for them to play to.

[–] solrize 11 points 3 days ago (1 children)

It's less a matter of anonymity as wanting to maintain some basic privacy. If you want to tell someone where you learned about something, that's great, go ahead and tell them. To have them extract the info from you without your knowledge is dystopian. Referers should have been banned as soon as the web became commercial.

[–] [email protected] 1 points 1 day ago (1 children)

Having info "65 people visit this site from Lemmy.world" doesn't seem to be that invasive tho.

I can see blogger and other creator utilize this to connect with community.

[–] solrize 1 points 1 day ago* (last edited 1 day ago) (1 children)

The referer header tells the site which specific users and which specific clicks came from lemmy world. That's flat-out invasive. Revealing the number of users (as Mozilla wants to do) is also invasive even if it doesn't single out the user (of course that's much less direct and people usually tolerate it until they become attuned to the issue).

The thing to ask yourself when site X wants information Y is "what does X want to do with the information?". If the answer can possibly be "something bad", then X should not get the information unless the user opts into sending it. That is even if it's statistical or aggregated information. Being included in the count is like casting a vote for X, which (as we see with Trump getting elected) can have significant effects even with no identification of the individual voters.

[–] [email protected] 1 points 1 day ago

I see. At least making them optional is good, especially for political context.

For creator related stuff, I can see instance like Misskey.design community benefitting from this tracker.

[–] 4Robato 9 points 3 days ago (2 children)

I thought the fediverse was a way to give back the power to the users. This doesn't seem great. I don't want mastodon to be famous because it's useful to companies but because it's useful to people.

I don't know the details but hopefully they do something similar to firefox https://blog.mozilla.org/security/2021/03/22/firefox-87-trims-http-referrers-by-default-to-protect-user-privacy/

[–] [email protected] 14 points 3 days ago (1 children)

Read the article. It is a configurable thing and each mastodon server admin has to activate it in order to send a referer.

[–] 4Robato 5 points 2 days ago (1 children)

I read the article but I'm worried about the implementation which you won't be able to choose and while you can change server realistically not many people will even know this happened.

I hope the focus is privacy and people and this change dowsn't have people in mind.

[–] [email protected] 3 points 2 days ago

Well, I don't know how you could implement that from a website that would enable people to choose? Not sure that is technically possible.

And of course if you simply telll your browser not to send referer info in headers you won't.

[–] [email protected] 7 points 2 days ago

The fediverse is a place where websites automatically share content. What people do with that is wide open.

[–] x00z 4 points 2 days ago

I want to see where visitors are coming from. I also like to see (and sometimes join in) with the conversations they're having.

Imagine this guy contacting you about your bounce rate.

[–] Cris_Color 6 points 3 days ago (1 children)

Oh neat! Is there any way to check if my instance has opted into this?

[–] [email protected] 8 points 3 days ago (1 children)

That PR is not even merged and deployed yet. When it gets released: simply ask your instance admin, I guess. (I think looking into the source code might also tell you but no idea where to search exactly)

[–] Cris_Color 4 points 2 days ago

Ah, gotcha. Thank you!

Probably I should go learn who my admin actually is 😅

[–] [email protected] 3 points 2 days ago

Mastodon is federated and there are thousands of sites. Even if they all opted-in, their statistics will be fragmented.

Surely this alone defeats the benefits for bloggers and other content hosters.

Good for mastodon admins that want the feature to be enabled, I guess, but I don't see why anyone would do that.

[–] [email protected] 6 points 3 days ago
[–] General_Effort -3 points 2 days ago* (last edited 2 days ago)

Turning that on is probably a GDPR violation for those in Europe.

ETA: Don't shoot the messenger. I won't be suing.