this post was submitted on 30 Jan 2024
98 points (81.4% liked)

Privacy

32120 readers
309 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

So I was going through /all and this admin is snooping at vote counts for posts in his instance and then posting it publicly.

Just a reminder that these kind of petty people exist. Pick a trustworthy instance or better yet, host your own.

Archive: https://archive.md/oybyL

you are viewing a single comment's thread
view the rest of the comments
[–] mozz@mbin.grits.dev 15 points 9 months ago (1 children)

Votes pretty much have to be public in order for the whole federated system to work -- otherwise anyone could just stuff 50 votes for their favorite comment, and there'd be no way to tell where they came from. Given that, I think it's important that the software be honest with people about the situation, "disincentive" or not. Personally I'm fine with my votes being public, but an important part of that is that I know they're public and can vote accordingly.

[–] homura1650@lemm.ee 3 points 9 months ago (1 children)

Not nessasarily, the protocol could be written so that an instance simply tells other federared instances "X of my users upvoted this, and Y downvoted this".

The tradeoff being that instance then have less tools to work with to moderate voting. Instead of being able to do global vote ring detection, the most they can do is look for abuse on their own server, and trust that every instance they vote-federate with does the same. Even then, with every instance trying to be vigilant, no one instance would have the info to detect a cross-instance abuse.

[–] mozz@mbin.grits.dev 5 points 9 months ago

That would make it possible in general for any instance operator to game the system in ways that are by design impossible to analyze, for dubious benefit.

It would also involve some pretty substantial changes from the current ActivityPub protocol (not just a new way the protocol works, but a change to some of what are currently its core operating principles about e.g. deduplication of entities across the network). You'd have to either talk the authors of every ActivityPub software into accepting your new way, or else abandon the idea of your software being able to interoperate with other ActivityPub software.