this post was submitted on 28 Feb 2026

520 points (95.8% liked)

Privacy

46827 readers

683 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS

Yayannick@lemmy.ml

ranok@sopuli.xyz

520

Fuck Github, Microsoft has made it impossible to create an account without linking to hardware or phones (lemmy.ml)

submitted 3 days ago* (last edited 3 days ago) by someone@lemmy.today to c/privacy@lemmy.ml

118 comments fedilink hide all child comments

Github has made it impossible to create an account when using a VPN and a privacy browser with fully spoofed hardware identifiers. (Use Firefox or Firefox-based Privacy Browser, VPN, install Canvasblocker to test this.) I create an account with Google or Apple (both requiring hardware identifiers and numbers and birthdates) or I can use an email. When I use an email, it comes back with this horrible test, and even if I do it completely correctly, it tells me after I didn't do the test right, gaslighting me with a picture of what I chose (which I didn't choose) and showing me the correct picture (which I did choose and it claims I didn't select).

It's fucking bullshit and it's more corporate control of open source software. For people who have their discussion or issue tracker, I can't even participate without hardware identifiers likely linked to me some other way and phone numbers. It's fucking bullshit. If anyone from Microsoft is reading this, FUCK YOU!!!!!!!!!!

I am so tired of this bullshit. I just want to post an issue about a piece of software. You don't need my fingerprint, hardware or personal, or biometric shit. This is a slippery slope. Fuck them.

I really hope more developers just get the fuck off Github. Honestly, if you are developing privacy-oriented software and using github, there's a mistmatch and it's bullshit, and I know it's time consuming and annoying to move, but please do. This is fucking bullshit and it's not like it's going to become LESS annoying over time. FUCK THIS.

you are viewing a single comment's thread
view the rest of the comments

[–] PrinzKasper@feddit.org 46 points 3 days ago (2 children)

Playing devil's advocate, it's probably more about blocking bots from creating accounts than it is about blocking privacy minded users. You just end up being collateral damage.

Obviously that still sucks, I'm just saying it's not that simple

[–] ell1e@leminal.space 15 points 2 days ago (1 children)

Gitlab.com has similar problems, sadly. Meanwhile, I haven't ever heard of Codeberg doing somethign similar, but who knows I guess.

[–] brbposting@sh.itjust.works 4 points 2 days ago (2 children)

I’m wondering if you could have any version of this—assuming best intentions and smartest people—which did not demand very similar countermeasures past a certain equivalent growth threshold.

I unfortunately have to imagine Codeberg is like Lemmy and flies under the radar from spammers.

…for now.

LLMs all but guarantee a future of oppressive noise to signal ratios. I imagine IRL connections, or at least numbers saved in your phone, will become pretty important there. So then I think up in-person local-community-vibe verification schemes but they all end with dirty marketers or operators inducing members of the public to astroturf or lease their accounts…

[–] ell1e@leminal.space 1 points 2 days ago

I heard Codeberg already struggles with spammers, so I get that. But letting big surveillence data companies like the credit card companies solve this, seems like one of the worst ideas. I've seen e.g. discourse use a gradual trust system, there likely are other ways.

[–] FG_3479@lemmy.world -1 points 2 days ago

There is literally the following post on the home page right now:

https://lemmy.world/post/43670862

Because it is posted from a Mastodon instance for sewing software and they have posted the same link many, many times, it could be a scam.

[–] FG_3479@lemmy.world 3 points 2 days ago* (last edited 2 days ago) (1 children)

Use Librewolf with a mobile data connection on a PAYG SIM, then go to Settings > Librewolf and turn off IPV6 to ensure you are behind CGNAT then turn off resistFingerprinting and enable WebGL.

Then install Jshelter and create a profile with the following settings:

Time precision: High

Locally rendered images: Little lies

Locally generated audio: Little lies

Graphic card information: Unprotected for highest chance of success or Little lies for best privacy

WebAssembley speed-up: enabled

Then make sure that all other options in Jshelter are turned off including Fingerprint Detector as Cloudflare Turnstile fails with it on.

[–] FE80@lemmy.world 1 points 2 days ago (1 children)

turn off IPV6

This is not a fix for anything.

[–] FG_3479@lemmy.world 2 points 2 days ago

Mobile data uses CGNAT for IPV4 which means that your activity is mixed with others. IPV6 is usually just static.