this post was submitted on 15 Aug 2024
3 points (63.6% liked)

Privacy

800 readers
8 users here now

Privacy is the ability for an individual or group to seclude themselves or information about themselves, and thereby express themselves selectively.

Rules

  1. Don't do unto others what you don't want done unto you.
  2. No Porn, Gore, or NSFW content. Instant Ban.
  3. No Spamming, Trolling or Unsolicited Ads. Instant Ban.
  4. Stay on topic in a community. Please reach out to an admin to create a new community.

founded 2 years ago
MODERATORS
c0mmando@links.hackliberty.org
3
Fedi design needs to evolve for privacy -- for anonymous posting (links.hackliberty.org)
submitted 1 month ago* (last edited 1 month ago) by soloActivist@links.hackliberty.org to c/privacy@links.hackliberty.org
8 comments fedilink hide all child comments
 

I have lots of whistles to blow. Things where if I expose them then the report itself will be instantly attributable to me by insiders who can correlate details. That’s often worth the risks if the corporate baddy who can ID the whistle blower is in a GDPR region (they have to keep it to themselves.. cannot doxx in the EU, Brazil, or California, IIUC).

But risk heightens when many such reports are attributable under the same handle. Defensive corps can learn more about their adversary (me) through reports against other shitty corps due to the aggregation under one handle.

So each report should really be under a unique one-time-use handle (or no handle at all). Lemmy nodes have made it increasingly painful to create burner accounts (CAPTCHA, interviews, fussy email domain criteria, waiting for approval followed by denial). It’s understandable that unpaid charitable admins need to resist abusers.

Couldn’t this be solved by allowing anonymous posts? The anonymous post would be untrusted and hidden from normal view. Something like Spamassassin could score it. If the score is favorable enough it could go to a moderation queue where a registered account (not just mods) could vote it up or down if the voting account has a certain reputation level, so that an anonymous msg could then possibly reach a stage of general publication.

It could even be someone up voting their own msg. E.g. if soloActivist is has established a history of civil conduct and thus has a reputation fit for voting, soloActivist could rightfully vote on their own anonymous posts that were submitted when logged-out. The (pseudo)anonymous posts would only be attributable to soloActivist by the admin (I think).

A spammer blasting their firehose of sewage could be mitigated by a tar pit -- one msg at a time policy, so you cannot submit an anonymous msg until SA finishes scoring the previous msg. SA could be artificially slowed down as volume increases.

As it stands, I just don’t report a lot of things because it’s not worth the effort that the current design imposes.

you are viewing a single comment's thread
view the rest of the comments
[–] Enkers@sh.itjust.works 2 points 1 month ago* (last edited 1 month ago) (1 children)

In this case, wouldn't it be important for the informant and platform to be controlled by different people? It'd look mighty suspicious if you were ever suspected of whistleblowing or leaking and you just happened to run your own instance that specifically caters to that need.

[–] MolochAlter@lemmy.world 2 points 1 month ago* (last edited 1 month ago)

Probably, but there's clearly not a lot of interest at present, and anyone running one such instance would absolutely incur scrutiny nonetheless.

It'd probably be simpler to send the information to a trusted moderator on some specialized community through some dead drop, rather than going through the hassle of making a whole system for throwaway accounts, at that.