jonah

joined 1 year ago
MODERATOR OF
2
This Week in Privacy #5 (blog.privacyguides.org)
 

Sharing this because it's one of the most promising Android projects we recommend on Privacy Guides, and it would be a huge detriment to the Android/Privacy community at large if this developer is no longer able to continue this work :(

Happy New Year!

DivestOS and the Divested projects as they currently stand are ultimately unsustainable.

My goal for 2023 was to acquire a grant to continue my work, I was unsuccessful.

Today I am announcing a fundraiser of raising $12,000 USD by end of February.

It may be a stretch to ask, but I hope you all have found sufficient value in my work to keep these projects going.

If it is unsuccessful I will switch to a full-time job and the Divested projects will take a backseat.

To those who have donated, I truly appreciate your support.

Thank you - Tavi/Tad.

1
This Week in Privacy (#2) (blog.privacyguides.org)
 

The full changelog has been linked if you are interested, but I want to call out an important update (emphasis mine):

Previously 2FA was enabled in a single step which made it easy to lock yourself out. This is now fixed by using a two-step process, where the secret is generated first, and then 2FA is enabled by entering a valid 2FA token. It also fixes the problem where 2FA can be disabled without passing any 2FA token. As part of this change, 2FA is disabled for all users. This allows users who are locked out to get into their account again.

Probably not the way I would've handled it, but it's ok. Please re-enable 2FA on your account as soon as possible :)

1
This Week in Privacy (#1) (blog.privacyguides.org)
submitted 10 months ago* (last edited 10 months ago) by [email protected] to c/[email protected]
 

As you reading are undoubtedly aware now, the Lemmy.one instance experienced a massive failure this weekend. Unfortunately the data was not in a recoverable state, so the server was restored from a July 26th backup, and data after that time is likely lost.

Since this occurred while I was out of town, I haven't had the time to collect all the details of what happened, so I will have to post more information at a later time.

 

I'm writing this post to inform you all that I have decided to defederate from the exploding-heads[.]com instance.

After carefully reviewing the instance, reported posts, and comments from our community, content on exploding-heads is clearly mostly—if not completely—in violation of our instance rules, including content posted by the instance admin themselves (a large factor in the decision to defederate any instance).

On other fediverse platforms I run, such as Mastodon, I would typically respond by "Limiting" such instances, since the main goal is to avoid the publishing and promotion of such topics on our public ("All") timelines, rather than control what you can or cannot access. Unfortunately, Lemmy does not yet offer the fine-grained moderation controls to make this possible, so complete defederation is our only option to avoid the re-publishing of content which is consistently hateful and discriminatory.

Defederation from other Lemmy instances is not taken lightly, and in the future I will continue to review instances on a case by case basis.

 

TL;DR: Reddit is making their tracker-filled mobile app the only way to access Reddit on mobile devices, they are falsely accusing third-party developers of blackmail, and they are on a path to severely lower the quality of content posted on Reddit and increase the amount of spam you see. To stand against these changes, alongside numerous large subreddits, Privacy Guides is not currently available on Reddit. Join us on Lemmy at [[email protected]](/c/[email protected]) :)


As we discussed and announced a week ago on Reddit, the Privacy Guides subreddit is being made private from June 12 to June 14th to call attention to Reddit's most recent anti-consumer behavior.

What is Reddit doing?

A few weeks ago, Reddit unveiled plans to change the pricing for their API from $0 to $12,000 for 50 million requests. For third-party clients like Apollo on iOS or Sync on Android, this suddenly put the cost to create such an app in the realm of $20,000,000 per year, a figure clearly unsustainable for third-party Reddit client developers. For comparison, Imgur—a website with a similar userbase and size to Reddit—charges developers approximately $166 for every 50 million requests. This change in Reddit's pricing to far beyond any reasonable market value was driven solely to eliminate third-party clients from the market, in order to force Reddit users to use the official app instead, a plan which was successful given that most major third-party Reddit clients have now announced they are shutting down by the end of this month.

Reddit's API changes also affect a number of bots which are critical for moderation. Reddit cutting off access to clients and bots which moderators require to effectively care for their communities will only result in Reddit being overtaken by spam and low-quality content.

Why does Privacy Guides care?

The internet is supposed to be an open standard, and information on the internet cannot be funneled solely through proprietary first-party clients. The difficulty I had in merely archiving the r/PrivacyGuides announcement post on the New Reddit design (note everything missing here on internet archive) clearly demonstrates the danger of locking information into closed ecosystems like Reddit, where merely accessing this information is subject to their whims.

Open APIs and third-party clients are paramount to enabling privacy-friendly access to otherwise proprietary silos on the web. Through the use of those APIs and clients, it was possible to interact with Reddit in an entirely user-controlled, privacy-friendly way. Reddit's restrictions take that choice away, making their official app virtually the only portal to the information on their platform available to mobile users.

While Reddit is certainly within their rights to make these changes, Reddit users are certainly within their rights to reject these changes and choose an alternative.

We—obviously—think that the r/PrivacyGuides community is hugely beneficial to the internet at large, and a lot of great discussions take place informing people about privacy and protecting their data online. All of this taking place on Reddit was a necessary price to pay in order to reach a ton of new people and get them interested in private, open-source technologies, but if Reddit is going to abuse that power and try to control those people into using privacy-invasive clients, the cost of that might outweigh any benefit to us remaining on the platform.

Reddit's Current Response (Unmitigated Disaster)

In the past week, Reddit has largely made two real announcements about this change:

Firstly, they announced that they would keep the API free to certain clients which provide accessibility features. It should go without saying that this is just another way of Reddit saying: Because we are unwilling to make our website and apps accessibility-friendly ourselves, we will very generously let third-party developers do it for us for free.

Their second response has been to falsely accuse a prominent developer of blackmail, and then double down on their false accusations when confronted with irrefutable proof of their behavior. Threatening and accusing people in private messages, and then acting like the victim when those people publish those messages to refute your claims is incredibly toxic and inappropriate behavior from anybody working on any project, much less the CEO of Reddit.com.

In my view, this childish behavior from Reddit moves this situation far past the typical money-grabbing moves you should expect from Big Tech corporations and into legitimate concerns about integrity and stability at Reddit. If their leadership is going to devolve into Twitter-esque, dictatorship-fueled decision making, the entire platform can no longer be trusted as a source of knowledge at all.

What happens on June 15th?

I don't know what Reddit's response to this widespread protest will be. In any event, the Subreddit will re-open, but if Reddit's response is to do nothing, then r/PrivacyGuides will re-open in restricted, mod-only posting mode. Then we will have a community discussion about our next steps.

Reddit choosing to do nothing is—in my opinion—an untenable solution. While we will re-open r/PrivacyGuides in order to allow people to access the vast community knowledge that is already there (while you still can), it is entirely possible that the subreddit will remain restricted indefinitely. It is hard to imagine a reason why we should encourage our incredibly helpful and generous community to continue to provide valuable content to Reddit for free, only for Reddit to go down this privacy-invasive, ad-first path.

What's Next?

In any case, I would strongly encourage you to stop using Reddit going forward. The fiascos at Twitter and now Reddit clearly demonstrate that centralized big tech companies can no longer be trusted with being the gatekeepers to user-generated information (as if they ever could, hah!).

I think that smaller, federated communities like Lemmy/Kbin/Mastodon are the future of knowledge-sharing on the internet, and the new Privacy Guides community on the fediverse can be joined from any ActivityPub enabled instance, such as:

All of these are links to the same community, just pick whichever site you already have an account on.

Privacy Guides additionally hosts a Discourse forum at discuss.privacyguides.net where we have discussions about and analyze various privacy tools.

[–] [email protected] 0 points 1 year ago

I would describe Apollo as an accessibility app in the sense that the regular Reddit app is unusable.

0
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

Some people have been asking which communities they should join first, so I posted some remote communities you can subscribe to on the sidebar on the homepage :)

Tech → [email protected]
News → [email protected]
Gaming → [email protected]
Memes → [email protected]
Privacy → [email protected]
FOSS → [email protected]
Monero → [email protected]
Music → [email protected]
Books → [email protected]
LGBT → [email protected]
Nature → [email protected]
Sports → [email protected]
Programming → [email protected]

Find another cool community? Leave a comment :)

There's also this universal community search tool you can try using. If you find a community, just copy its URL and paste it in /search to subscribe to it here. This just goes to show that while there might not be many local communities here on lemmy.one yet, the beauty of the fediverse means that doesn't matter!

[–] [email protected] 0 points 1 year ago

Downvotes just don't work inside communities hosted on lemmy.one. They might work on your own local midwest.social instance, I'm not sure, but if you downvoted my comment here nobody would be able to tell on lemmy.one, and nobody would be able to tell on other federated instances like lemmy.ml or beehaw.org, because lemmy.one simply would not federate that information to them.

[–] [email protected] 0 points 1 year ago* (last edited 1 year ago) (2 children)

You might want to check out [email protected] for asking questions, and [email protected] for reporting bugs and requesting features :)

Mods available to be added?

Not sure what you're asking here? About creating communities (subreddit equivalent) and adding mods for them, see my comment here: https://lemmy.one/comment/536

You can collapse comments, it's just not really intuitive, click this button:

No downvoting on lemmy.one:

Downvotes are disabled on this instance, because it is a very small community. If you see something against the rules, report it. If you see something you don’t like, go find something you do like and upvote that instead :)

I may consider changing this in the future.

If you have more questions about this instance, lemmy.one, generally, you can also ask at !meta.

 

With Reddit's encroaching IPO and their poorly planned API changes, we need a place to keep up with privacy topics that isn't tied to an anti-privacy, centralized ~~sinking ship~~ site.

Our forum running Discourse has been a great place to discuss website changes and answer questions, but it doesn't quite provide the same experience as Reddit does for things like sharing news, so we're trying something new:

[email protected] is our new ActivityPub-enabled community for sharing links and other information from the privacy and security realm. Welcome!

We're going to be trying out posting to this community for a few months to decide if we want this to replace or coexist with the r/privacyguides subreddit, so we'll see how it goes. If you want this to succeed, stay active! Our mission is to become the most inviting and friendly place to discuss privacy and security on the fediverse 😎

How do I join the Privacy Guides community on Lemmy?

You can join a few different ways:

  • On Kbin.social, a Lemmy alternative with a more Reddit-like UI and instant registrations. I didn't like Kbin from a hosting perspective because of some missing features, but for just browsing communities and joining ours it's a great option: https://kbin.social/m/[email protected]
  • On Lemmy.one, this is the server which hosts the Privacy Guides community on Lemmy, and also the server that I admin myself. You are welcome to create an account, but it might take up to 24 hours for your account to be approved.
  • On another Lemmy instance: You can join the community by entering [[email protected]](/c/[email protected]) in the search box on your instance. There are plenty of servers you could join, or you could host your own relatively easily if you're familiar with self-hosting.
  • On another ActivityPub instance: You can also probably join by entering @[email protected] or https://lemmy.one/c/privacyguides in the search box of the ActivityPub software you use, although Mastodon does not seem to pull in posts from Lemmy communities properly in my limited testing, so YMMV.

Verification post: https://www.reddit.com/r/PrivacyGuides/comments/13x7oe3/who_wants_to_try_out_lemmy_privacyguideslemmyone/

1
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

Communities can only be created on Lemmy.one by an administrator. While we figure out the direction we want this instance to go in, in terms of moderation, we are curating the communities hosted here on this instance, to avoid duplicating the efforts of other communities on Lemmy and ensure we're only offering unique, high-quality content.

If you moderate a Subreddit with 50K+ subscribers and would like to create your community here on Lemmy.one, please message u/JonahAragon on Reddit.

If you have another idea for a community, you can reply to this thread with your proposal for consideration. Lemmy.one and the Lemmy federation as a whole is still quite small, so communities can't realistically get as granular as they are on Reddit yet, try to think broadly and we'll go from there. Include whether you'd be interested in moderating your proposed community too :)

You can of course always create a community on any other Lemmy instance if you are not able to create one here, and users here can follow communities from any other Lemmy instance as well.

view more: next ›