Edit: obligatory explanation (thanks mods for squaring me away)…

What you see via the UI isn’t “all that exists”. Unlike Reddit, where everything is a black box, there are a lot more eyeballs who can see “under the hood”. Any instance admin, proper or rogue, gets a ton of information that users won’t normally see. The attached example demonstrates that while users will only see upvote/downvote tallies, admins can see who actually performed those actions.

Edit: To clarify, not just YOUR instance admin gets this info. This is ANY instance admin across the Fediverse.

  • blue_zephyr@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    3
    ·
    1 year ago

    Jesus Christ that’s a major security risk. Luckily I just created a random string for my password but imagine how many accounts those admins can hack by simply entering the same combination everywhere.

    • MeanEYE@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      ·
      1 year ago

      It’s not. No sane person these days keeps password in plain text and to the point there’s no benefit in doing so. Hashed and salted is the correct way to go. Rids developers of any future troubles they might run into in regards to passwords. That said password can be stolen by anyone anywhere if one is not careful. It’s essentially trust based idea. That’s why two factor is a thing.

      • MeanEYE@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Also a reason why VPNs are not a security measure, rather a convenience way of working that’s been rebranded these days as security measure. They claim they protect your privacy online, but all it does is changes originating IP address of request. If you browse anything through HTTP protocol they can easily see what you are browsing except now spying on a single person got a lot easier. You just go to one VPN provider and force them to hand over your data.