@dexiheart is anti-cop @Aus.Social Admin I wouldn't be so sure that even everyone on the ops team can do it, especially doing it without getting caught in a security audit.
Oh wow, ok. There are things to say about Twitter's external actions, but I've been assuming the insides were running like a normal decade-and-a-half-old resource-rich company.
@dexiheart is anti-cop @Aus.Social Admin I've been wondering about that. How can you possibly encrypt messages in such a way that admins with full access cannot access them? It would mean you can't store private keys on the server; every client you use to access it (mobile app, every browser) would need a copy of your private key. Or it's encrypted with your password, but then if you lose your password, you lose all your messages too.
@Martijn Vos @Aus.Social Admin @dexiheart is anti-cop it could in theory be done with a client, as that could store your keys on your own device (and you could in theory check that the client isn't doing anything harmful with those keys), but then only people who use mastodon through a compatible client could read those.
Or more easily one can use the DM/PMs on mastodon to exchange contact IDs for some system that is designed for private communications rather than mostly public ones and already provides cryptography (and a client/app to do in on the user's side).
Correct me if I'm wrong in my layperson's understanding, but isn't the issue with the privacy of ActivityPub messages fairly analogous to the privacy of unencrypted email? That is, in the process of routing a message to its intended destination, every server along its path will download a copy?
I'm not asking to imply "and therefore we shouldn't strive for more," I'm just wondering if the issues are analogous.
@Spencer @Aus.Social Admin It's slightly better than the privacy of unencrypted email, because unencrypted email is sent over the internet unencrypted, whereas ActivityPub messages at least use https.
Personally I think email should be upgraded to a system where every message is encrypted by default. Of course that would require knowing the recipient's public key, which would require a system to distribute those to everybody who has you as a contact, and before you know it, it has turned into a social network. But I think this is the way email has to go.
reminds me of when Gaben responded to accusations that Steam can snoop and see what people do on their computer with "hell no I don't want to see your porn".
Christina Sørensen
in reply to Aus.Social Admin • • •Christina Sørensen
in reply to Christina Sørensen • • •Aus.Social Admin
Unknown parent • • •I meant snapchat but I kind of wish I didn't... people seem to dislike it
but I just meant, that's the place that people use for the sexts.
dexiheart is anti-cop
in reply to Aus.Social Admin • • •clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛
in reply to dexiheart is anti-cop • • •silverwizard
in reply to clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 • •clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛
in reply to silverwizard • • •silverwizard
in reply to clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 • •Fairly famous hacker, former twitter head of security
Basically released data about Twitter's security including "everyone has root everywhere"
clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 likes this.
jay 🌺
in reply to clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 • • •#twitter
clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 likes this.
clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛
in reply to jay 🌺 • • •Oh wow, ok. There are things to say about Twitter's external actions, but I've been assuming the insides were running like a normal decade-and-a-half-old resource-rich company.
Thanks for the correction, @jay 🌺 and @silverwizard .
silverwizard
in reply to clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 • •clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛 likes this.
clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛
in reply to silverwizard • • •silverwizard likes this.
Martijn Vos
in reply to dexiheart is anti-cop • • •silverwizard
in reply to Martijn Vos • •Elena ``of Valhalla''
in reply to Martijn Vos • • •@Martijn Vos @Aus.Social Admin @dexiheart is anti-cop it could in theory be done with a client, as that could store your keys on your own device (and you could in theory check that the client isn't doing anything harmful with those keys), but then only people who use mastodon through a compatible client could read those.
Or more easily one can use the DM/PMs on mastodon to exchange contact IDs for some system that is designed for private communications rather than mostly public ones and already provides cryptography (and a client/app to do in on the user's side).
silverwizard
in reply to Elena ``of Valhalla'' • •Spencer
in reply to Aus.Social Admin • • •Correct me if I'm wrong in my layperson's understanding, but isn't the issue with the privacy of ActivityPub messages fairly analogous to the privacy of unencrypted email? That is, in the process of routing a message to its intended destination, every server along its path will download a copy?
I'm not asking to imply "and therefore we shouldn't strive for more," I'm just wondering if the issues are analogous.
silverwizard
in reply to Spencer • •Martijn Vos
in reply to Spencer • • •@Spencer @Aus.Social Admin It's slightly better than the privacy of unencrypted email, because unencrypted email is sent over the internet unencrypted, whereas ActivityPub messages at least use https.
Personally I think email should be upgraded to a system where every message is encrypted by default. Of course that would require knowing the recipient's public key, which would require a system to distribute those to everybody who has you as a contact, and before you know it, it has turned into a social network. But I think this is the way email has to go.
silverwizard
in reply to Martijn Vos • •Polychrome
in reply to Aus.Social Admin • • •