Waltzy

joined 1 year ago
sorted by: new top controversial old
what. in c/memes@lemmy.ml
[–] Waltzy@lemdit.com 3 points 1 year ago

It could be a vets I suppose. Still odd.

YSK: Your Lemmy activities (e.g. downvotes) are far from private in c/youshouldknow@lemmy.world
[–] Waltzy@lemdit.com 1 points 1 year ago* (last edited 1 year ago)

Aye, my proposal was a trade off between privacy and convenience for non technical users ( it's only as bad as a non federated social media site).

The best balance here would be a client on the user device that manages the keys for you, and an API in lemmy for accepting and sending encrypted messages.

As a side note, I thing PGP is more or less superseded by AGE

YSK: Your Lemmy activities (e.g. downvotes) are far from private in c/youshouldknow@lemmy.world
[–] Waltzy@lemdit.com 3 points 1 year ago (2 children)

On encrypting messages, this is a solved e2e problem if users home instances generate public private key pairs for its users on sign-up ( or users can provide their own )

YSK: Your Lemmy activities (e.g. downvotes) are far from private in c/youshouldknow@lemmy.world
[–] Waltzy@lemdit.com 2 points 1 year ago (2 children)

Tbh it would be trivial to just salt and hash the usernames (for keying the votes), no need to encrypt or involve the users password. The salting and hashing would be handled by the users home instance ( which presumably the user trusts ) so building a rainbow table would be non trivial for an attacker ( assuming the home instance keeps its salts secret ).

[UserScript] Lemmy Universal Link Switcher rewrites all links to Lemmy instances everywhere to your home instance! Now rewrites post/comment links! 1.2.0 Release! in c/technology@beehaw.org
[–] Waltzy@lemdit.com 3 points 1 year ago (4 children)

Noob here! Why would you want to? This Is the first federated service I've used!