Nope. I don’t talk about myself like that.
This is already a risk whether via the existing thumbnail storage
Not anymore. You can opt out of it for the most part.
# Leave images unchanged, don’t generate any local thumbnails for post urls. Instead the the
# Opengraph image is directly returned as thumbnail
“None”
Yeah that was 19.4. It’s doesn’t proxy everything unless explicitly set to. Just thumbnails I believe. But I could be wrong. And many instance owners would be allergic to that as it leaves them on the hook for storing content. For example… someone posts CSAM… a copy of that is now on your server. You get police raided and you’re fucked.
Actually going over it briefly looks like it has a few available options for what it will cache…
I refuse to enable it myself for the above reason. I would venture 99% of instances out there would also refuse for liability and bandwidth costs.
I’ve addressed the points you’ve brought up. I run my own instance. I can collect just about everything in the DB tables I’ve seen without being logged into the instance with some external work.
Are you trying to get my point? If you have a specific item that you believe is stored on a lemmy server that you think isn’t possible to obtain. I’m all ears. otherwise I think this conversation is done. This kind of response is pointless and I’m not interested in continuing if you’re going to act like that.
The hardest thing to collect would be private messages, and login information (which is hashed btw, so even your server operator doesn’t really know it). But messages are plaintext and openly federated. All the other information is really really easy to collect through other means.
but that instance owners have even more, probably more valuable info, like IP addresses from which not just geolocation but also wake times, device usage patterns and other gnarly stuff could be extracted, that could - together with other personalized surveillance info (like the usual adware stuff) - be aggregated to give a bigger picture.
I have IP behind the geolocation. How do you think that I know the geolocation? It’s an IP lookup. My interface that I shown in the image just doesn’t publish it because I don’t care personally. What I use that service for is simply to track where sensitive emails/documents go. Not to track lemmy. I don’t need specific resolutions. Just to know if they leak outside of what I expected.
Device patterns? The app you use is the app you use. That would be given away via your browser header. I also collect that with the tracking image. Just once again. Not shown in the graph cause I don’t care to track it personally (I’m only doing this as an example, not to actually aggregate data).
If you use lemmy over the web browser, browsers don’t really give up that much information unless you’re google themselves. In which case apparently chrome gives up a boatload of information to google’s domains.
not-so-public information
You’d have to give me an example of any of what you’re referencing. I can collect IP, web headers, access times, and if I tag enough pages or mark the image as non-cacheable could even see multiple views/accesses (you see views higher than actual visitors) I can track your movement across all of the fediverse.
that one can get some info about me through my (public) actions
Simply “viewing” the page (which pulls the image and is not necessarily “public”) is a direct rebuttal to obtaining data that isn’t “public”.
instance owners have quite a lot more information on their user’s activities
Not really. Only thing additional that could be identified is browsing patterns while on the site itself. I don’t think it’s that valuable. You likely already gave up what you’re likely to see by commenting in communities. That’s going to be tracked best through a proxy or something, not lemmy itself. And can even be tracked externally through other means. Ex: This post has a tracking image on it and because you need to connect to me to load it I now see everyone that had loaded this comment. So this can be done externally without even being an instance owner. Click view source to see it at the end of the post.
Votes are federated, kbin instances see them as “likes” publicly. Messages are federated, sent in clear text. And posts that are loaded can be tracked via other means… Think of sites that display ads… They do this exact thing and collect information by the boatload because they can inject on every page that shows an ad. Without needing to be an admin on the site itself.
I’ve been repeatedly told by everyone I talk to over there that it’s not ready yet… still… even though it was supposed to be ready by end of Q2 this year.
Calling them today still yielded the same answer for me.
I’m forced to use DDNS and a service to route my emails for me. But email and PBX servers really don’t do well on DDNS type stuff.
I have basically a full rack of equipment. Here’s the network side of it all. My desktop is 2 SPF+ fiber connections back to the core switch. Tons of stuff in my rack is all 10gbps or 40gbps.
Dual opnsense firewalls (top 2 slots, dual 40gbps connecting to core switches), though one is inactive until they let me buy static addresses. I run some business stuff on this. Boatloads of homelabbing and self-learning.
If you want to do full IPS/IDS, then yes you need some horsepower. But just connection with basic rules there’s plenty out there that’s not super expensive. Ubiquiti has their dream machine line which even the “cheap” $400 one can do 10gbps (2gbps with ips, or something like that. I dunno, I don’t keep tabs on them).
I didn’t stop any active connections/downloads happening on the network. I very likely had a gig of other stuff going elsewhere on the network.
Their “smart-nid” is also a router… so that works too, but I don’t trust it and in my setup it’s in transparent mode.
Edit: Formatting sucked
My personal best so far is 7TB in a month 😂
This is just my past month… I have no idea what my record is… but would likely be significantly higher as I slowed down on some stuff recently. I need more harddrive bays/harddrives… Stupid ebay doesn’t have what I want.
Edit: here’s past 90 days as well
Harris did not out perform Biden in ANY category.
The only downside is it’s still IPv6 Rapid Deployment.
And no static IP addresses yet… Even though it was supposed to be rolled out Q2.
And yet here I am in the USA with 8/8 Gbps fiber with no caps. Though I do pay $185 a month. I live in a Red state, and in a metro area, but not near the metro core, in unincorporated county land.
last 30 days stats to prove no caps:
Correct. Canada and Mexico BOTH have “closed” borders and don’t just accept immigrants. In Mexico you cannot get citizenship and cannot own property. Canada actively complains to our sheriffs on the northern border for letting people go over to the north.
You said you’re using OPNSense for routing… Just keep it up to date and you’ll be fine.
If you’re worried about your ap, I think you can set omada APS to restart nightly… Though I could be misremembering.
Every network manufacturer has had some CVE for something.
If your vehicle isn’t disabled, what’s the big deal about stopping?
If you’re just careening down the highway at 80, you’re not really giving your car a fair chance to let you know that it’s really in a disabled state now are you?
It’s just common sense that after a major impact you should evaluate the safety of continuing in your current state. Stopping and doing the bare minimum of just looking at your car would be the first step of that process.
Real Autopilot also needs constant attention
Newer “real” autopilot systems absolutely do not need constant attention. Many of them can do full landing sequences now. The definition would match what people commonly use it for, not what it was “originally”. Most people believe autopilot to be that it pilots itself automatically. There is 0 intuition about what a pilot actually does in the cockpit for most normal people. And technology bares out that thought process as autopilot in it’s modern form can actually do 99% of flying, where take-off and landing isn’t exempted anymore.
Color doesn’t matter to Lidar… Oh wait… Elon nixed that.
We have evidence of the US messing with nist standards
What… You realize that NIST is literally a government agency? It’s part of the United States Department of Commerce. It’s literally the US government. Are you saying that the government is messing with itself? What does that even mean?
I don’t like what this bit of information is doing to discussions in Lemmy.
Cool. That’s fine that you don’t like it. However people have a right to not see what they don’t want to see. If they decide that means it’s lemmy.ml, then that’s their right.
Just like I have a right to not peer with lemmy.ml if I didn’t want to.
Hell I have a hard block on ALL Russian and Chinese IP addresses. Not because I have something against the people. But I just don’t want to deal with the headache of accepting traffic from those countries.
Just because some (or even a majority) of the people on lemmy.ml are fine to interact with doesn’t mean that there isn’t contention from other users and admins on that instance.
Oh for sure, it’s boatloads and I love it… but I’m in the market for a /28. I want to hand them like $40 extra a month. LET ME PAY YOU QUANTUM/LUMEN/CENTURYLINK/LEVEL3. It’s effectively free money as once it’s setup there’s nothing that changes or goes down. There’s so little maintenance/upkeep cost to it that I just don’t understand why they don’t want to print free money.