erincandescent on Nostr: I think theres a good argument that making a bridge opt-out means that - for policy ...
I think theres a good argument that making a bridge opt-out means that - for policy reasons - many instances will have to defederate it; while making it opt-in allows them to leave it federated and means that their users can choose to use it.
But more than anything that’s an argument for better controls in the software we use (some very simple things, like can you imagine instance blocks which a user could opt out of them?)
But public is public. The controls you want? They should be built into the protocol/implementations.
Anything else is security theatre, and it is very unwise to give people a sense of security that is enforced only by hopes and prayers.
Also, harassment-enforced consent is a poor substitute for actual security and privacy controls.
Even if you don’t care about how it impacts its targets, it doesn’t work on anyone operating fully in bad faith.
This is the only place I know where it’s acceptable to tell users they have protections that are not actually enforceable. If a company did it we would call it false sense of security.
Published at
2024-02-17 14:17:13Event JSON
{
"id": "4dd9b955d54b58559a152d612a9181f84b65196b44f1c0b1c71b5f021ccae451",
"pubkey": "525c26d79e9be523b836ae6784c41096cdd20040a8a6d3826c478bb97a555dc9",
"created_at": 1708179433,
"kind": 1,
"tags": [
[
"proxy",
"https://akko.erincandescent.net/objects/f9d308ad-38a6-4dee-bac8-e19dc2bbcce5",
"activitypub"
]
],
"content": "I think theres a good argument that making a bridge opt-out means that - for policy reasons - many instances will have to defederate it; while making it opt-in allows them to leave it federated and means that their users can choose to use it. \n\nBut more than anything that’s an argument for better controls in the software we use (some very simple things, like can you imagine instance blocks which a user could opt out of them?)\n\nBut public is public. The controls you want? They should be built into the protocol/implementations.\n\nAnything else is security theatre, and it is very unwise to give people a sense of security that is enforced only by hopes and prayers.\n\nnostr:note1lkmudwcq6n2uhnls8dy2nhhukq467wmu5va6vgeqztrxlt9mz32sl3tfyg",
"sig": "a6ada618443924bc7b52827e2e9757bc357153a29cd22e9aefde469b8e8c27c33814b9a9e5605d0335c6d0642b6fb059a9dd905cc36401cb7c70899b270b5db9"
}