Update: Thanks mateys for participating! Our instance was really split down the middle on this vote - 49% in favour, 51% against.
After reading all the comments, it honestly seems unlikely to me that private voting will ever be a viable option for Lemmy in any meaningful way, because voting data gets federated out all across the fediverse, so I think on balance the best way forward is just to accept that reality and work under the assumption all votes are public. At least then nobody is lulled into a false sense of security.
Having said that there's an argument to be made for both sides and I don't think there's a "right" answer necessarily. Its more down to personal preference about whether you want/expect private (to the users) voting, or you want to embrace public voting. But until Lemmy can guarantee the privacy of user votes then simply pretending they are private seems like the worst of both worlds.
We might revisit the topic of public/private voting again down the road if Lemmy's developers provide privacy enhancements in that area though.
Cheers, Unruffled.
Hi again mateys!
As most of you are probably aware, since the development of Lemvotes Lemmy votes are no longer private for users.
The way lemvotes works right now afaik, is it uses an admin level account to collect voting data from all federated instances, thus enabling the identification of every voter. This method effectively bypasses the guardrails the developers put in place to keep this info more restricted.
However, the developer of lemvotes has recently developed an "opt out" for instances that don't want their user data collected in this way. So now we have a choice of whether or not to continue. For total transparency, I asked the developer to create an opt out because I wanted to give our users the option to choose that path without defederating from the lemvotes instance.
I think there are (at least) two schools of thought on this topic, which I will attempt to succinctly summarize below:
-
Votes should be kept private to users as they were only ever meant to be viewable by instance admins. Making votes public to everyone via lemvotes, when users have a reasonable expectation of privacy when it comes to voting, is a betrayal of user trust. It also leads to arguments and a lot of unnecessary drama, caused by users trawling though each others' vote histories.
-
It's good that voting is transparent and that users have the same tools available as admins to conduct their own investigations into other users. This creates a level playing field and helps hold everyone accountable for their voting patterns.
So now you have some of the context, I'd like to ask our community what are your thoughts on lemvotes... is it a social good or a bad idea?
Personally, I quite like it from an admin perspective - it's a handy tool, and a pretty cool project. But I also have an expectation (mainly from other forms of social media) that users' votes should be kept private from other users, so I still think it's problematic from that perspective.
Proposal: To opt out of lemvotes, so that our users' voting data is kept (at least somewhat) private.
- To vote FOR the proposal to succeed, upvote the post.
- To vote AGAINST the proposal, downvote the post.
This will be a simple majority vote. Similar to the last governance topic, I have no clue what the instance sentiment is towards lemvotes, so let's find out! Feel free to add your comments below.
This comment is nuts.
you're clearly not paying attention to what the trump administration is actively engaged in atm. one can easily cite numerous activities where public information is being used to target, harass, and deport individuals.
so kindly, fuck you and your shit take on the shit thats happening atm. this instance hosts multiple communities that are at high risk of being targetted. including its raison d'être of pirating.
if you dont think the information wont be weaponized as soon as its convenient for them to do so you're the one who is fucking nuts.
also read this https://www.usenix.org/system/files/1401_08-12_mickens.pdf
Your submission in Should we opt out of Lemvotes? was removed for Golden rule: Don’t be shitty..
Maybe you should have read the link they posted. 😂
Take a break mate, get some perspective. There's no need to flip out.
I get that if you live in the empire stuff is scary but you need to look at proper security models.
If being online and voting is dangerous activitypub is not something you can use. Even accessing through tor and trying to maintain good opsec would be phenomenonly risky given all the ways you could leak info or correlation attacks/tone analysis deanon.
Under that threat model defedding one instance is like bording up a window to protect you from a tank outside while your walls are made of glass.
It is already public. Every server on the network has it. I only have to go to kbin and browse this thread to see how you've voted, or spin up an instance and federate.
Please read about how activity pub works if you are so concerned.
Im aware how it works. Im saying we should take actions to limit issues until the protocol is fixed. There is no reasonable why we cant modify an instances use of the protocol to keep votes private to the instance a comm is hosted on. You dont need to ship individual votes beyond the instance of the comm where the post originates. Lemmy already has github issues discussing this very topic.
I wont be responding your inane prattle going forward.