atomixNov 20, 2022
Electronic Frontier Foundation
New to Mastodon? Here's an overview of privacy and security questions for this new way of doing social media. https://www.eff.org/deeplinks/2022/11/mastodon-private-and-secure-lets-take-look
Is Mastodon Private and Secure? Let’s Take a Look

This post is part of a series on Mastodon and the fediverse. We also have a post on what the fediverse is, why the fediverse will be great—if we don't screw it up, and how to make a Mastadon account. You can follow EFF on Mastodon here.With so many users migrating to Mastodon as their micro-...

Electronic Frontier Foundation
Nov 20, 2022 at 3:25amWeb
Show threadKim SnyderNov 20, 2022

@eff
Thank you for this! Just turned on 2MFA for Mastodon. 🔒

#cybersecurity

Show threadWaitman GobbleNov 20, 2022
I would say two issues I don't see mentioned (hopefully i didn't miss them in the article)
  • the server admin has your private key and can send fake messages as "you"

  • the server admin can block entire domains of people you follow and/or depend upon.

  • the server admin is probably "too small" to be held to privacy-related laws, such as California CPPA. Do they make 25 million dollars annually?

  • the server admin can instantly wipe out the site and vanish.

    • If you really want to have some piece of mind you should set up your own instance. If you don't want to be responsible for other people's posts then prevent signups.
    Show threadToshimaruNov 20, 2022
    @eff I translated into Japanese. Thank you for your good essay!! https://www.alt-movements.org/no_more_capitalism/hankanshi-info/knowledge-base/eff-mastodon-private-and-secure-lets-take-look/
    Show threadRavi DwivediNov 20, 2022
    @eff As you have a mastodon account now, I suggest you to add your mastodon handle in the footer of your website, along with twitter and facebook.
    Show threadキャロりん (she/her)Nov 20, 2022
    @eff Thank you for this article, very helpful for a Matso newbie like me 
    Show threadキャロりん (she/her)Nov 20, 2022
    @eff Misspelling Matso for extra newbie points … 
    Show threadMichael ClarkeNov 20, 2022
    @eff Thank you for sharing - useful intro to the pros and cons and caveats!
    Show threadDaveC-CO Nov 21, 2022
    @eff Excellent (as usual from EFF). Minor soapbox : please turn in 2FA on your Mastodon profile
    Show threadKay DubNov 21, 2022
    @eff 2FA just turned on! Thanks!!!
    Show threadPiper CarterNov 26, 2022
    @eff thank you