I’ve created this post: https://sh.itjust.works/post/8898162
And some admin showed they can see how the upvotes\downvotes go.
If you are concerned about privacy, you should know, that this data on Lemmy can be easily mined and tracked.
Since there isn’t a Karma system i don’t think its a problem unless advertisers federate.
Oh, I remember seeing this a while back on the lemmy threads, thanks for the reminder!
Burner accounts for all! You get a burner and you get a burner and you as well!
Haha. If all of us would do so, we’d sure up this usercount to combat Meta’s Threads and dying Twitter.
Well, not only this data, all activity on lemmy is public since it needs to be federated (sent to all instances subscribed to the community will receive all activity).
Which means any person can track anyone if they subscribe to the same communities the user’s instance has.
AFAIK the only activity not sent is saved content, and downvotes from content hosted in instances which disabled them.
EDIT: for more example, here’s my upvote to this post
"actor":"https://lemmy.pe1uca.dev/u/pe1uca","object":"https://sh.itjust.works/post/8931097","type":"Like","id":"https://lemmy.pe1uca.dev/activities/like/f6b0cced-4e1c-41d7-bf11-349b680c4d84","audience":"https://lemmy.one/c/privacyguides"
And here’s the original comment
actor":"https://lemmy.pe1uca.dev/u/pe1uca","to":["https://www.w3.org/ns/activitystreams#Public"],"object":{"type":"Note","id":"https://lemmy.pe1uca.dev/comment/1434121","attributedTo":"https://lemmy.pe1uca.dev/u/pe1uca","to":["https://www.w3.org/ns/activitystreams#Public"],"cc":["https://lemmy.one/c/privacyguides","https://sh.itjust.works/u/andrew_bidlaw"],"content":"","mediaType":"text/markdown"},"published":"2023-11-11T04:07:31.962497+00:00","tag":[{"href":"https://sh.itjust.works/u/andrew_bidlaw","name":"@andrew_bidlaw@sh.itjust.works","type":"Mention"}],"distinguished":false,"language":{"identifier":"en","name":"English"},"audience":"https://lemmy.one/c/privacyguides"},"cc":["https://lemmy.one/c/privacyguides","https://sh.itjust.works/u/andrew_bidlaw"],"tag":[{"href":"https://sh.itjust.works/u/andrew_bidlaw","name":"@andrew_bidlaw@sh.itjust.works","type":"Mention"}],"type":"Create","id":"https://lemmy.pe1uca.dev/activities/create/7a1c726e-0191-4a71-8980-a565727ac52d","audience":"https://lemmy.one/c/privacyguides"
And all instances which are subscribed to this community need to receive this information to keep it updated.
All federated data (thus public) should be easily available to the end user. Otherwise we create a false sense of security.
@andrew_bidlaw You can simply see this data on any Friendica instance if you have an account. Just hover your mouse over the like/dislike numbers, and you can see who upvoted/downvoted shit. You can even receive notifications about this on your own posts, just as on Facebook.
To me, it was funny back in the day to see all tankies brigading to downvote me on any single post or comment I made, the moment I started showing my political stances 😆 (yes, even stuff posted before that had no political stuff in them, lol). But yea. To some people, this might be a drawback.
The good thing, however, is that neither Kbin nor Friendica show you a centralized place in your profile to see what did you downvote. You just have to search every post you can find to see this info.
I assumed as much seeing as it’s a public site ran by many different entities.
Similarly, I think Google can read my gmails.
In order to read gmails, you have to work at google.
In order to read the upvotes on this post, all you have to do is spin up your own lemmy instance. Anyone with technical knowledge can do it. The problem is a bit different. I could do it, if I was motivated.
If lemmy gets popular enough, there will be 3rd party sites with search bars and nice UIs and graphs to help you see how someone votes.
Not sure what the solution is. Maybe if we can’t make votes private, they should be fully public.
I don’t understand the concern though. I always assumed my votes, comments, or even PMs here were readable by at least the admins of the instance I’m a member of. The fact that votes and comments are public doesn’t seem to matter from a security or privacy standpoint.
There was an era of reddit where some nerds used addons to tag users for their own personal notes. Nothing wrong with making your own tags for people, imo.
But I do remember there were extensions for “mass tagging”. You could install browser extensions to label people based on their post history. Someone would run a script, aggregate data, put little tags on people based on how they post. Like, maybe you would install a tagger to label people who don’t agree with you politically, based on someone’s aggregated data.
I never personally liked the mass tagging stuff. It felt toxic to put people you don’t know in boxes. But, I never felt like it should be prevented. At the end of the day if you post something publicly, you shouldn’t be surprised when people respond to that.
But, some people here might not realize how public their vote history is. Not sure anyone wants weird graphs about how they vote. I upvote a lot of stuff, I’m sure a lot of people upvote stuff they don’t totally agree with. Maybe I’m imagining a problem where there isn’t one. I’ve just seen how weird people get when it’s easy to put people in boxes.
