this post was submitted on 04 Jul 2023
3379 points (96.1% liked)

You Should Know

33100 readers
220 users here now

YSK - for all the things that can make your life easier!

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)


Rule 1- All posts must begin with YSK.

All posts must begin with YSK. If you're a Mastodon user, then include YSK after @youshouldknow. This is a community to share tips and tricks that will help you improve your life.



Rule 2- Your post body text must include the reason "Why" YSK:

**In your post's text body, you must include the reason "Why" YSK: It’s helpful for readability, and informs readers about the importance of the content. **



Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.



Rule 4- No self promotion or upvote-farming of any kind.

That's it.



Rule 5- No baiting or sealioning or promoting an agenda.

Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.



Rule 6- Regarding non-YSK posts.

Provided it is about the community itself, you may post non-YSK posts using the [META] tag on your post title.



Rule 7- You can't harass or disturb other members.

If you harass or discriminate against any individual member, you will be removed.

If you are a member, sympathizer or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people and you were provably vocal about your hate, then you will be banned on sight.

For further explanation, clarification and feedback about this rule, you may follow this link.



Rule 8- All comments should try to stay relevant to their parent content.



Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.



Rule 10- The majority of bots aren't allowed to participate here.

Unless included in our Whitelist for Bots, your bot will not be allowed to participate in this community. To have your bot whitelisted, please contact the moderators for a short review.



Partnered Communities:

You can view our partnered communities list by following this link. To partner with our community and be included, you are free to message the moderators or comment on a pinned post.

Community Moderation

For inquiry on becoming a moderator of this community, you may comment on the pinned post of the time, or simply shoot a message to the current moderators.

Credits

Our icon(masterpiece) was made by @clen15!

founded 1 year ago
MODERATORS
 

Edit: obligatory explanation (thanks mods for squaring me away)...

What you see via the UI isn't "all that exists". Unlike Reddit, where everything is a black box, there are a lot more eyeballs who can see "under the hood". Any instance admin, proper or rogue, gets a ton of information that users won't normally see. The attached example demonstrates that while users will only see upvote/downvote tallies, admins can see who actually performed those actions.

Edit: To clarify, not just YOUR instance admin gets this info. This is ANY instance admin across the Fediverse.

you are viewing a single comment's thread
view the rest of the comments
[–] consumer451@lemmy.world 0 points 1 year ago* (last edited 1 year ago) (4 children)

What about IP addresses? I see those are logged. Are they available to query?

I would imagine so, right?

If so, ummmmmmmm. That is not ok.

[–] lemming007@lemmy.world 16 points 1 year ago (1 children)

Umm, anything you access on the Internet has to know your IP address, that's how the Internet works. Whether or not they choose to keep the logs is a different matter.

[–] consumer451@lemmy.world 4 points 1 year ago* (last edited 1 year ago) (1 children)

Ok, sure. But the difference is that I can’t make my own Reddit instance and then see all Reddit users IP addresses.

What is the vetting process of getting an instance federated?

Like if I was an authoritarian henchman, could I make an instance with a community about cats, get federated, then see all the IPs of users calling my boss a pooh bear, on all other instances?

Edit: what about swatting?

[–] azuth@lemmy.world 3 points 1 year ago (1 children)

Ok, sure. But the difference is that I can’t make my own Reddit instance and then see all Reddit users IP addresses.

There's no difference, you don't get IPs of other instances' users just an id

Like if I was an authoritarian henchman, could I make an instance with a community about cats, get federated, then see all the IPs of users calling my boss a pooh bear, on all other instances

Or you could just buy it from reddit.

what about swatting

Fix your police.

[–] consumer451@lemmy.world 1 points 1 year ago* (last edited 1 year ago) (1 children)

This sounds a lot like “not my problem.” I am familiar with this type of response, but usually this level of irresponsible indifference comes from those evil VC backed companies. Except they don’t usually say it out loud.

If this is the attitude of the devs, I am deleting all my glowing recommendations of lemmy on other sites.

Is this really the attitude of the devs?

[–] azuth@lemmy.world 1 points 1 year ago

I suppose if you ignore the part where I said the problem doesn't actually exist (IPs are not included in federated content) then It can look like a not my problem response.

I wonder if you will also delete the FUD and misinformation you posted on this thread.

[–] veganzombeh@lemmy.world 4 points 1 year ago (4 children)

I haven't looked into it at all but I expect IPs are visible to instance admins. That's pretty typical of any online platform.

[–] consumer451@lemmy.world 5 points 1 year ago* (last edited 1 year ago)

But if I understand this, anyone that makes a lemmy instance can see the IPs of any commenter or voter, on any other federated instance?

What is the vetting process for federation?

[–] Awe@lemmy.ml 3 points 1 year ago

Even if lemmy itself doesn't support it, there are plenty of ways to log visitors ips and correlate that data with lemmy to figure out who the user is.

EX: Using a revese proxy like cloudflare or nginx, which are both very common.

[–] Awe@lemmy.ml 2 points 1 year ago

Even if lemmy itself doesn't support it, there are plenty of ways to log visitors ips and correlate that data with lemmy to figure out who the user is.

EX: Using a revese proxy like cloudflare or nginx, which are both very common.

[–] Awe@lemmy.ml 1 points 1 year ago

Even if lemmy itself doesn't support it, there are plenty of ways to log visitors ips and correlate that data with lemmy to figure out who the user is.

EX: Using a revese proxy like cloudflare or nginx, which are both very common.

[–] newIdentity@sh.itjust.works 2 points 1 year ago (2 children)

IP Adresse does not really matter. It changes every day or whenever I restart the router.

[–] drascus@sh.itjust.works 1 points 1 year ago (1 children)

Your public IP stays the same for long periods of time, is geographically tied, and also associates you to certain ISPs based on your address space. How long does it stay the same? Months - Years potentially depending on the lease set on the IP.

[–] newIdentity@sh.itjust.works 1 points 1 year ago

Well... not in Germany. Here you have to request a static ip

[–] Mininux@sh.itjust.works 0 points 1 year ago (1 children)

It depends on the ISP, country etc

I'm in France and almost every time our IP changes it's because my parents changed our internet subscription, or because moved to another place

[–] newIdentity@sh.itjust.works 0 points 1 year ago (1 children)
[–] Mininux@sh.itjust.works 1 points 1 year ago

It's probably bad for privacy, but it makes self hosting super easy

[–] drascus@sh.itjust.works 1 points 1 year ago

every website logs ip. The question is whether the admin maintains those logs. However a web server needs your IP so they can route traffic back to you. That IP gets logged so that if something is not working the admin can review the logs and figure out what is going on. Many websites that are privacy focused either turn the logging off or dump the logs fairly quickly. Doing something like that means the admin needs to take steps to create other avenues for troubleshooting that don't factor user data into the scenario. With smaller projects like instances hosted on lemmy that might not always be feasible for volunteer admins. This doesn't necessarily mean they are doing anything wrong. Lots of websites maintain logs that include IP addresses.