𝚋𝚕𝚟𝚌𝚔 𝚖𝚟𝚜𝚔 𝚐𝚟𝚗𝚐 ☭Aug 19, 2018
witchlectical runeterialist
PSA: Mastodon is cool and fun and the federation and community control are great wards against the evils of capitalism. However, remember that due to how federation works, it's possible for someone determined and malicious to run an instance and read private and locked messages. Be careful what you post and keep private info in secure messaging applications that guarantee privacy.
Aug 19, 2018 at 9:44amWeb
Show threadfenny, annoying weirdoAug 19, 2018

@anna tbf i would say the same thing about any online messaging service that doesn't have independently-verified end-to-end encryption

basically emails with openpgp and telegram are about all i'd trust for the msot sensitive things

Show threadfenny, annoying weirdoAug 19, 2018
@magicalfeyfenny i dont't doubt that the admins of twitter can look into your DMs, and so can the admins of nearly any other site probably
Show threadwitchlectical runeterialistAug 19, 2018
@magicalfeyfenny yeah the server admin of anything can see messages, like lol if you think twitter can't read your twitter DMs. the unique thing about mastodon is that any instance can request any other instance's data under certain circumstances. for example, while witches.live takes action to block known bad instances, someone might set up a new instance just to try and get at someone's private messages and we wouldn't really have a way of knowing
Show threadfenny, annoying weirdoAug 20, 2018
@anna that makes sense yeh
Show threadwitchlectical runeterialistAug 20, 2018
@magicalfeyfenny i heard there's better protections against other instances seeing unrelated DMs now, but i mean, whomever owns any of the instances involved in a DM conversation has those DMs in their database in cleartext
Show threadfenny, annoying weirdoAug 20, 2018
@anna ugh
Show threadwitchlectical runeterialistAug 20, 2018
@magicalfeyfenny just not really a way around that without end to end encryption. note that as an admin you have to go digging to find that kind of thing, but it's there.