You can see who upvoted and downvoted a post by viewing it in friendica.
-
One of the advantages of votes being public is that it keeps instance owners honest and, perhaps more importantly, means they know other instance owners are honest.
If they weren't public it would be easy to modify your lemmy instance to send 10 votes with fake hashes for every real vote. There would be constant accusations of brigading and faking votes.
-
There's no way that isn't going to be abused. Some marketing or tracking agency will setup a fediverse server and just collect all data like this for free. Or worse, take advantage of a friendica instance to bombard it with requests for data collection purposes.
-
mods will also be able to view votes in their communities.
You can already do this using tesseract, by the way (not tesseract.dubvee.org, strangely?)
On t.lemmy.dbzer0.com i can see both upvotes and downvotes (for all my modded comms):
-
Nothing stops defederation, though.
-
I guess the feature was already merged in one of the past Lemmy versions then?
-
I think it's been implemented this whole time, but it's just that the default lemmy-ui doesn't show it
-
That creates an incentive for trolls to create accounts at the popular instances using this mechanism in order to destroy their reputation.
-
But they can just be banned from those instances?
-
Assuming each user will always encrypt to the same value, this still loses to statistical attacks.
As a simple example, users are e.g. more likely to vote on threads they comment in. With data reaching back far enough, people who exhibit "normal" behavior will be identified with high certainty.
-
Damn, so this is how I find out we're least trustworthy part of the commonwealth.
-
I don't know this name, I read its part of the Fediverse... Does this affect us?
-
What if a uuid is generated every time a user signs up, and every upvote iterates through the uuids?
-
Or mentally unwell people stalking.
-
How would that work? How would an admin separate downvotes from brigaders and legitimate users who happen to downvote a comment?
-
Yes, but as long as you don’t reveal your identity, they can’t do much to track you.
They don’t have access to your IP.
Of course, it you’re using the same username over multiple services, or reveal identifying information (which is much easier to analyse now due to AI) they will be able to track you.
-
You can already do it with a database query iirc.
-
Is IP not logged anywhere in Lemmy/ ActivityPub?
-
Nope just server
-
IIRC PieFed’s method is to send the upvote using a second random username not connected to your username.
-
I think server admins can access. It makes sense moderation wise, if for keeping a tab on alts alts and enforcing permabans.
