I found it complicated at first (didn’t know which instance “will last”, where to register to not lose anything when instance admin decide to turn it down), but now it’s going good. We are missing mobile apps though.
What’s are your thoughts about Lemmy/kbin?
deleted by creator
That’s why i chose the opportunity now, early in, to “move” to an instance in Germany. I still have to rely on the instance owner, but at least juristidiction is that same as where i live and GDPR/DSGVO is something i can somewhat count on. But in the end, it also is the question where the server is. Is the instance hosted on a QNAP NAS in someones basement or on an AWS instance in the US. That’s my biggest gripe when everyone in the privacy community recommends federated stuff. The notion that some dude in Iowa or such is more trustworthy than some corporation is pretty questionable if you ask me.
Good call, I actually just did the same and deleted my .world account. I’m still not comfortable with the potential issues associated with having each instance hosted at the whim of whoever runs it.
lemmy.world is hosted in finland as far as I know and it is covered by gdpr. We know for a fact the corporations are datamining us, and you can see in your browser all of the third party requests and tracking code embedded in the html. I have had 0 blocks from lemmy.world hit my dns blocker. Nor anything blocked by the browser as there is no incentive and we would leave in a heartbeat if that were the case. Also it is a public forum so it comes with the usual don’t put out what you don’t want people to see. You point about the skillset of the admins is valid to properly secure it. Hopefully we can get some community whitehats to have a look at instances and the code itself
Don’t reuse passwords, 2fa email, etc.
But really how different is trusting some guy with a server from trusting some corporation with a server farm?
Very, actually. A large corporation has the resources and staff to properly secure and maintain (both physically and digitally) their servers vs the decentralized nature where you don’t know who is hosting it, or where. A large corporation can be held accountable for any data breeches or security issues, and are more able to report and respond quickly and properly to any security incidents. Individually run/maintained servers can vary greatly in technical support knowledge, hardware capabilities and security, and resources available to maintain the service.
That’s even assuming the best in people and that those people running the servers are operating in good faith and not actively working to use peoples data for nefarious purposes. At least if a corporation is found to be acting in bad faith, they can be held accountable by some kind of regulatory body.
I dunno. I trust corps about as far as I can throw them - they’re not human or sentient and they’ll happily ruin you if it increases their profits by more than the amount they’ll pay in fines.
deleted by creator