Show Navigation
Conversation
Notices
-
At the end of the day, any security method which relies upon moral compunctions on the part of bad actors is inherently 100% insecure, because any such system (such as advisory privacy) requires only one (1) bad actor doing one (1) bad thing in one (1) instance and all security of the system has been compromised and rendered moot.
-
I find most of mastodon's noises in this regard to be security theatre, because there is no actual mechanism that protects private posts that you can't get around if you don't know the protocol. The only effective means of this is E2EE with a strong cipher, which it does not use. I've been saying this since Mastodon started and I'm certainly not going to stop now. You can call me miss meanfacie or Debbie Downer all you like, I don't give a shit. We have vulnerable people whom use this platform as a safe space, and there's some of them that if their respective governments found out the stuff they've been saying in a space they considered to be private, they're screwed. People disappear in some of the countries like that. It's serious business, and I don't think people treat it with the gravity it's due.
-
If you do know the protocol, rather.