Search

Not sure if this is the right community to post this in, as we don't have any [email protected] or similar community, but it seemed the most relevant. Sorry if it doesn't belong.

I'm sure that at this point it has become common knowledge that , Meta's alternative to Twitter, is trying to implement ActivityPub into their site. If/when this goes through, this would make Threads an instance admin, giving then full access to all the data that is available to other instance admins. This would include all data that belongs to Lemmy/KBin/Mastodon/etc users.

My main question is, should we let them do this? Should we federate with them if/when they come online, or should we defederate? I know that does not usually defederate with others (we currently only have one instance blocked, bottom of ), but in this case, this is Meta we're dealing with. They aren't exactly a big fan of data privacy, which is the whole theme of this instance (our sidebar: "This instance is focused on providing security and privacy for its users").

It seems that most people on Lemmy/etc. seem to be in favour of pre-emptive defederation and that many other instances have already defederated (Lemmy.ca, dbzer0, Blahaj, Beehaw, Lemm.ee).

There may also be another solution, but I'm not sure whether this applies to Lemmy.

What does everyone else think? Should we stay federated with them? Should we defederate, like other instances have already done? Should we wait and see? I'd love to hear others' opinions on this.

Hi all, a shy try to awake this community again :)

Whats your daily-routine for privacy, what are you using, what are you not doing?

Short summary of me:

• Phone -> LineageOS
• VPN -> Per perimeter (LAN, Mobile) -> different VPN providers
• Home network (More for security but also helps detecting privacy invasive applications) -> Firewall, IDS and ISP router is bridged
• Payment -> Cash where possible (Saved me some trouble when card machines were offline and most had to go somewhere else to have a meal)
• Browser -> Three to four different ones, per usage I use a different (Media, communication, bank etc)
• Browser extensions -> UblockOrigin, Decentraleyes, User-AGent-Switcher and NoScript
• Browser cache/history -> deleted once a month (I do not use credentials saved inside browsers)
• Online Calls -> Matrix
• OS -> Linux only household
• Mail -> Different providers and own domain with catch-all, so if a company sells my mail I will see it because it is [email protected]

Thats on top of my head, what are your takes?

cross-posted from: https://lemmy.dbzer0.com/post/6251633

> LemmyWorld is a terrible place for communities to exist. Rationale: > > * Lemmy World is centralized by disproportionately high user count > * Lemmy World is centralized by #Cloudflare > * Lemmy World is exclusive because Cloudflare is exclusive > > It’s antithetical to the #decentralized #fediverse for one node to be positioned so centrally & revolting that it all happens on the network of a privacy-offender (CF). If #Lemmy World were to go down, a huge number of communities would go with it. > > So what’s the solution? My individual action idea is to avoid posting an original thread to #LemmyWorld. I find a non-Cloudflare decentralized instance to post new threads. I create one if needed. Then I cross-post to the relevant Lemmy World community. This gets some exposure to my content while also tipping off readers of the LW community of alternative venues. > > Better ideas? Would this work as a collective movement?

cross-posted from: https://fedia.io/m/disabled/t/346115

> Banks have started capturing customers voice prints without consent. You call the bank and the robot’s greeting contains “your voice will be saved for verification purposes”. IIUC, these voice prints can be used artificially reconstruct your voice. So they could be exfiltrated by criminals who would then impersonate you. > > I could be wrong about impersonation potential.. just fragments of my memory from what I’ve read. In any case, I don’t like my biometrics being collected without my control. > > The countermeasure I have in mind is to call your bank using #Teletext (TTY). This is (was?) typically a special hardware appliance. As a linux user, TTY is what the text terminal is based on. So I have questions: > > 1. can a linux machine with a modem be used to convert a voice conversation to text? (edit: perhaps minimodem or asterisk?) > > 2. how widespread are TTY services? Do most banks support that, or is it just a few giant banks? > > 3. if street-wise privacy enthusiasts would theoretically start using TTY in substantial numbers, would it help the deaf community by increasing demand for TTY service, thus increasing the number of businesses that support it? > > (update) > > Another privacy benefit that comes to mind: bankers will sometimes start an unprovoked interrogation of intrusive questions irrelevant to your reason for calling, such as who you work for, how much you earn, career skill, etc. The realtime nature of a voice call puts you at a disadvantage whereby a delayed response can create suspicion. So you must answer quick and without stumbling. Quick answers also invite many questions. In a text conversation, a delay can simply mean that you stepped away for a moment. And presumabley a CSR is handling multiple conversations at once. > > Some banks only have on file where I worked 2+ jobs ago. I don’t want to keep them up to date with more data, so I can take a moment to check my notes for where they think I still work.

Excerpt of feed:

Today I found out that google docs infects html exports with spyware, no scripts, but links in your document are replaced with invisible google tracking redirects. I was using their software because a friend wanted me to work with him on a google doc, he is a pretty big fan of their software, but we were both somehow absolutely shocked that they would go that far

Google Docs exports automatically infected with tracking links:

• txt - unaffected
• html + AFFECTED
• odt - unaffected
• pdf - unaffected
• epub + AFFECTED
• rtf - unaffected
• docx - unaffected

Hi all

I decided to add some new post categories because there where some discussion posts where it does not make sense to tag a country. To further organize the community the following tags can now be used:

• [ARTICLE] or [CH], etc: Sharing articles, blog posts etc, as before use country tags, or if not country specifig declare as article.
• [DISCUSSION]: Everything, that as the name suggests, should or will be discussed.
• [SEARCHING]: Looking for activists or supporters for privacy events/initiatives/referendums etc. If country specific combine with country tag.
• [GUIDE]: Explaining processes, laws or other how to's.
• [UPDATE]: News for our community, at the moment only for me as I'm the only moderator.

If there are other categories you would like to see, leave a comment.

The collection of DNA and other biometric idendity data can lead to a scary reach of surveillance.

What are the laws in other (your) countries regarding this? In 2008 the EU court of human rights already mentioned concerns regarding laws: > A summary of the current global situation and issues for debate highlights: (1) a growing global consensus on the need for legislative provisions for the destruction of biological samples and deletion of innocent people’s DNA profiles, following the European Court of Human Rights’ judgement on this issue in 2008; (2) emerging best practice on scientific standards and standards for the use of DNA in court which are necessary to prevent miscarriages of justice; (3) ongoing debate regarding the appropriate safeguards for DNA collection from suspects; restrictions on access, use and data sharing across borders; and data protection standards. Conclusion: There is an ongoing need for greater public and policy d

Source: Forensic DNA databases–Ethical and legal standards: A global review