For the people that trust Firefox over Brave, because Brave is Chromium based and therefore has a relationship with Google - how do you feel about the fact that an overwhelming amount of Mozilla funding is from Google?
For the people that trust Firefox over Brave, because Brave is Chromium based and therefore has a relationship with Google - how do you feel about the fact that an overwhelming amount of Mozilla funding is from Google?
1400 is a masterpiece. It’s a shame that the sequels went for this 3D sims styled gameplay. I don’t want to control the whole family. I want to control one member of the family.
How does this compare with Carrot?
Why do you think that?
A password reset probably should invalidate all previous JWT tokens.
It’ll come back, but with automation.
If it’s cheaper to build locally with automation and minimal US based labor then it is to build overseas and ship then they will bring manufacturing back.
The party needs to figure out what they actually stand for and focus on that. The Republicans have distinct factions but the conflicts between those factions are somewhat in the details. The factions in the Democratic party are wildly different and in direct opposition sometimes. The Democratic party has Socialists, Pacifists, and Environmentalist in the same tent as Corporatists and war hawks. Some of these factions just have zero common ground.
A sketchy instance operator isn’t really a solid defense against implementation of better privacy features in the source code.
Why should someone who has doxed someone get away with it by deleting their account?
Doxxing is not illegal in many places - the US included. Cyberstalking and harassment may be illegal, depending on location. That’s beside the point, but this is an extremely specific example.
Ultimately users should, in my opinion, be in control of their data. Tildes, for example, preserves deleted comments for (I think) 30 days and then permanently removes them. It seems like that approach is a compromise that would work for your situation while still respecting privacy long term.
Deleted comments remain on the server but hidden to non-admins, the username remains visible
This is a negative behavior by Lemmy, in my opinion. Deleted comments should be purged after some time. Tildes does the same thing - I think with 30 days?
Deleted account usernames remain visible too
These should be replaced with some random string of characters or something like DeleteUser<numberhere> or something.
Anything remains visible on federated servers!
This is just a concession of federation.
When you delete your account, media does not get deleted on any server
This is an issue, too, in my opinion.
I don’t think there is a legal requirement that you store that data, just that you make the data you do store available or in some situations you add logging for valid law enforcement requests.
How do you know if they are non-complaint without manual verification?
I think the difference is entry points. You’d start with /r/gaming - but you may eventually unsubscribe from that and subscribe to more niche gaming subreddits or even game specific subreddits. The day one Reddit experience is significantly more digestible compared to Lemmy. Content and community discovery isn’t as easy on Lemmy either.
My intention is to be a contributor. Rust is my second favorite language. Thank you for the discussion.
I just disagree. Let me restore my post for a limited amount of time before hard deleting it. Make the policy around that data transparent.
I have checked the issue tracker. Privacy concerns are coming up pretty regularly there. Other people seem to value it too. Lemmy has an opportunity to set a new standard around user privacy in this space and I hope we can take that opportunity.
It respects your privacy just as much as the alternative, which again, is reddit.
The alternative isn’t Reddit. It’s Tildes, Lobste.rs, Lemmy forks, etc…
News aggregation isn’t a binary choice with Reddit on one side. I think if you are saying your software/platform “respects privacy as much as Reddit” that should really be a red or yellow flag. The way Reddit treats user data shouldn’t really be an aspiration.
If you edit your post, the previous version isn’t saved.
I haven’t dived into how Lemmy handles edits specifically yet, but my understanding is that a version of the edit is saved into a log. This also brings up the point - if I can edit my post with a period to “delete” it, why doesn’t the delete work that way too?
You are posting on a public website, you can’t expect that level of privacy, nothing ever gets deleted on the internet.
I didn’t say I expected it. I said I wanted it. Just because Twitter is terrible for privacy doesn’t mean Lemmy can’t aspire to better than Reddit or Twitter for privacy.
No, because lemmy ISN’T PRIVATE FUNDAMENTALLY, it’s a PUBLIC FORUM I do not know what else needs to be said, don’t post public things if you want privacy.
A public form doesn’t mean it can’t respect privacy. Why even allow delete at all in Lemmy if this is your argument? Make comments immutable. It would be easier to code.
Lemmy is also aware of your IP address - should it make that information available since it’s a public form? Of course not, that would be absurd. When I click delete the post should be deleted because that aligns with what the user would expect to happen.
You have no way of knowing what tildes actually does, you just know what the code on github says it does, unless you’re running tildes yourself, you have no way of knowing.
Yep, but that’s also true for pretty much all Lemmy instances including the one you use - right? You have to place some level of trust in the maintainers and administrators.
I think the way Tildes handles deleted posts (removed 30 days later) is a benefit when compared to how Lemmy handles deleted posts. I’m fine if the delete isn’t instant.
This is not a fundamental issue, this is a growing pain, and it’s solved by just linking somebody to an instance instead of explaining all of that, this is opt-in complexity, not a fundamental problem.
I agree that it isn’t a fundamental issue, but it does seem to be a reoccurring issue in federated software. The process for getting people onto the software tends to be focused on tech savvy people. That’s why a lot of these platforms end up dominated by IT/software developers.
Yeah, that would be better, or you can just link non-technical users instances and explain none of that.
That requires ‘recruiting’ someone to a specific instance instead of them finding it on their own. That’s not an organic process. Nobody recruited me into Reddit - I found it myself.
If I Google Lemmy my top three links are:
None of these are specific instance someone could join. There isn’t a single instance in the first page of results. There are some variations of words that I can use that direct me to lemmy.ml first, but the signup page for that instance literally asks you to go to joinlemmy before signing up.
We need to improve this process if we want people to continue migrating to federated services.
If it’s not preventable, why do you care if lemmy does it? Does this actually matter at all?
Are you really going to use the nothing to hide argument? I care because we should design software to respect privacy. What Lemmy does with user data is within the span of control of Lemmy. Lemmy should treat user data with respect and value user privacy to the extent it doesn’t break the fundamental usage of the product.
Why do you expect privacy on a public forum? You’re assuming something that’s impossible to get, reddit doesn’t give you privacy, tildes doesn’t give you privacy, you don’t know that your content is actually being deleted their either, again, you’re forgetting that you’re comparing lemmy to something, not an imagined perfect choice.
Lemmy is open source. Tildes is open source. I know what both of them do, in theory, when I click the delete button. I know that Lemmy doesn’t actually delete the post. Reddit is closed source - I edit and then delete my posts there. You are correct, I don’t know what happens after that. I’m not arguing in favor of Reddit.
I don’t expect privacy, but I want privacy. I use Signal for messaging for privacy. I use a smaller third party email provider for privacy. If Lemmy can be more verifiably respectful of privacy I think that will draw more users into the platform over time.
Why do you assume they need to know how it works in order to use it?
Do they need to know how email works in order to use it? This is a wrong assumption. Yes, centralized services are easier to explain how they work fundamentally, but if you told someone lemmy was centralized, what incorrect assumptions would the end user actually make to actually impact their experience? Virtually nothing, once the issue trackers for instance-agnostic linking and automatically staying on your federated instance are resolved.
I don’t even know how to respond to this. Why does someone need to know how something works to use it?
Here is the flow for Reddit:
< 5 clicks
Here is the flow for Lemmy:
This process forces the user to make more choices (probably uninformed choices) and requires more navigation.
The join-lemmy page should probably be centered around non-technical users with an emphasis on joining and instance (not hosting one). Hosting an instance should be towards the bottom of the page. It should explain the benefits in plain and easy to understand text.
I literally have never worked with a company that didn’t use their own email server, I don’t know what you’re talking about.
You’ve never worked with a company using Google Workspace or Office 365/Exchange Online?
Nothing, but you not caring about that contradicts your argument of not caring about archive.org, that’d still be an external server downloading your data, it’s no different.
How Lemmy instances interact is a function of the Lemmy software and federation. Archive.org is not federated with a Lemmy instance. It’s literally scraping content and saving a local copy of it. This isn’t preventable without requiring a login to view any content.
I don’t think there are any cons EXCEPT that developing a federated option is more complicated, but there are no cons for end-users, all of the cons you listed have much bigger equivalents problems for centralized services.
I just can’t agree with this. My parents are going to understand how to use Twitter and how Twitter works much faster than they’d be able to figure out how Mastodon works. They’d also be able to figure out how Tildes or Reddit works faster than Lemmy.
https://join-lemmy.org/ for example has a distinctly technical first aesthetic. The first page talks about “selfhosted” and has a screenshot of a code example and the technology it is built with. The page appears geared towards software engineers. When you navigate to the join a server page it’s got a broken page for sopuli.xyz, it lists random user counts, etc…
This isn’t impossible for a non-technical user to understand, but it does have a higher hurdle for understanding compared to traditional centralized services.
The federation concepts are first and foremost in the presentation, instead of the user experience.
I don’t think that really holds up in a realistic comparison. BEVs are better for the environment. Just not as good as walking, cycling, and mass transit. All of these supply chain analysis commentary about BEVs fail to do an apples to apples lifetime comparison with ICE vehicles. Battery technology and battery recycling will continue to advance as BEV become more mainstream. Battery technology also has significant wider impacts and implications that aren’t strictly limited to vehicles.
The oil industry alone causes tremendous environmental devastation simply extracting oil - not to mention the transportation problem. Large scale raw material extraction is never pretty no matter what the final product is.