coffeeClean, 2 months ago (edited 2 months ago) to reddit in Reddit sent me invitations to their IPO to my "deleted" accounts! That's a GDPR violation!

You are on a privacy-offending Cloudflare site (#LemmyWorld), so Tor users are blocked from seeing your Cloudflare-jailed image. If you care about privacy you will bounce from that instance.

Without seeing the image, I have to ask how an anonymous user gets #GDPR rights. Or has #Reddit started supporting an identification mechanism of some kind? When I start the reg process, it asks for an email address, username, and pw, not a first + lastname (but my test stopped when a Google reCAPTCHA push was attempted). I have zero sympathy for Reddit – they are rotten to the core scumbags, but I do not see how the GDPR can be applied to anonymous accounts.

(edit) I gather from other comments you must have posted an email. Would be great if you could copy the text of the email into the body of your post so everyone can see it and so people using screen readers can hear it. Thanks!

activistPnk, 1 month ago (edited 1 month ago) to solarpunktravel in Other travel communities for the sidebar

I guess you don’t consider !bicycle_touring fit for the sidebar then.

Bicycle touring is relevant but indeed lemmy.world is antithetical to fedi philosophy and purpose so I wouldn’t want to promote it on the sidebar. #LemmyWorld has a group for everything and needs no promotion. They replicate communities in the free world, effectively poaching from better places.

Would you be opposed if some content from over there would also be crossposted to here?

No; feel free to crosspost either way.

My personal approach is to post initially in the most relevant free world decentralized community first, creating a new community if necessary. If the post contains a question that’s starving for answers after some time, then I might cross post to centralized places¹ in part to promote the better venue to those in places of oppression… to try to steer people toward a more ethical workflow.

Some instances only show the parent of a cross post, while other instances show both parents and children in a cross posting scenario. This is why I favor the digital rights respecting community for the initial post.

① e.g. lemmy world, sh.itjust·works, lemm·ee, lemmy·ca, programming·dev, and lemmy.ml.

activistPnk, 1 month ago to solarpunktravel in Other travel communities for the sidebar

I ended up on world because they accepted people when many instances didn’t

That’s the problem with #LemmyWorld. They do not exercise self-control and grew far beyond that of a healthy balance of power. Part of their excessive growth is attributed to their use of an oppressive US tech giant, Cloudflare, which is a centralized gatekeeper who dictates which people get access to what. They’ve betrayed their users and sold out the digital rights of the commons in trade for gratis “security” (though I hesitate to call it security when availability is ruined to the demographics of people CF oppresses).

and i didn’t want to sign up to an instance that may be run on somebody’s raspberrypi and would be turned off in a week or something.

That’s a real risk with the small instances but it’s a risk that we accept in the free world. It’s even more infuriating when a small instance opts to suddenly join Cloudflare without announcement, as opposed to going down. Then users get pawned to an oppressor without their knowledge or consent – while some users suddenly get shut out of the walled garden with their data trapped inside. This happened with waveform.social, lemmy.ca, and programming.dev. My content is now held hostage in those places unless I pawn myself to Cloudflare.

The way forward is better tools. There are various archival clients which grab your content as regularly as you want and save a searchable local copy. When a raspberrypi running in some kid’s mom’s basement gets spontaneously unplugged, you have your archives.

For the case at hand, I suggest creating a community either here or on the travel-specific instance lemmy.globe.pub. Let me know if you do so I can add it to the sidebar.

godfree2, 4 months ago to fediverse in The 4 best Reddit alternatives: Top picks to replace your subreddits - Lemmy is listed first!

@squaresinger @LinkOpensChest_wav yes and don't let people fall for quasi legal privacy policies that lemmy.world & ilk provide #Lemmyworld #accountability #fediverserated

ciferecaNinjo, 4 months ago (edited 4 months ago) to showerthoughts in It's 2023/2024 and Roseanne Barr is now more attractive than Madonna.

Not exactly. !showerthoughts@lemmy.world was a poor choice, as is:

• !showerthoughts@zerobytes.monster ← Cloudflare
• !showerthoughts@sh.itjust.works ← Cloudflare
• !showerthoughts@lemmy.ca ← Cloudflare
• !showerthoughts@lemm.ee ← Cloudflare
• !hotshowerthoughts@x69.org ← Cloudflare, and possibly irrelevant
• !showerthoughts@lemmy.ml ← not CF, but copious political baggage, abusive moderation & centralized by disproportionate size

They’re all shit & the OP’s own account is limited to creating a new community on #lemmyWorld. !showerthoughts@lemmy.ml would be the lesser of evils but the best move would be create an acct on a digital rights-respecting instance that allows community creations and then create showerthoughts community there.

(EDIT) !showerThoughts@fedia.io should address these issues.

_ohcoco_, 6 months ago to world in Belgium wants sanctions against Israel for Gaza bombings - deputy PM

@pleasemakesense Technical question about this post: Can someone please explain how a link from #LemmyWorld works when posted to #Mastodon?

When I click on the link, it shows this same post plus all of the same comments. I'm trying to understand how it works. thx

diyrebel, 7 months ago (edited 7 months ago) to fightforprivacy in [discussion] Tactic needed to counter all communities living on lemmy.world

Centralized:

Cloudflare Inc is a single US corporation. A tech giant like Google. All CF proxied websites go to Cloudflare’s assets who has centralized visibility on all that traffic. Don’t be fooled by the padlock in your browser. When you login to #lemmyWorld, the tunnel stops not at lemmy world’s host but at Cloudflare’s, where it is decrypted. Cloudflare sees your username and password and everything you do on lemmy world, DMs, etc. When you login to your bank, if it is Cloudflared, CF also sees everything you do on your bank account. If your government’s voter registration office is on Cloudflare, CF sees everything you do there, such as upload your driver’s license. Everything you do on any CF site is seen centrally by CF.

If you visit lemmy*world, lemm*ee, lemmy*ca, lemmy*one, & sh*itjust*works, these are separate Lemmy nodes but they are all Cloudflared so your connection & traffic all goes to the same place and CF sees everything you do on all those sites. All 5 of those sites are configured using the defaults, so you are either blocked on all or a permitted to access all those sites together without variation.

Exclusive:

The individual admins have some blunt controls over who gets access, but lemmy world just uses the defaults so lemmy world simply accepts CF’s decision on who to block, as do most CF sites. I’ve confirmed that lemmy world excludes tor users. And considering it just uses the defaults, it likely blocks people whose ISPs use CGNAT, libraries, and various other shared IPs.

ciferecaNinjo, 7 months ago to fedia in Cannot reply… Snubbed by the machine. (Cloudflare problem?)

I’ve retried several times, even with a long delay. I also tried re-entering the thread (which is often the fix for kbin-specific failures) and that did not work either.

(edit)
Note that to send this reply to you here in this pure kbin mag I had to submit twice. But in that #LemmyWorld even many retries makes no difference. I would love to have a text-based client about now.

ciferecaNinjo, 7 months ago to fedia in Cannot reply… Snubbed by the machine. (Cloudflare problem?)

Is this a Cloudflare problem?

I guess not. Today I was able to post there.

Though there’s another odd behavior: my profile shows all my own posts except the posts in that #lemmyWorld thread. But I do get notifcations if someone replies to me in that thread.

Every other Kbin user seems to be posting comments just fine.

I don’t see how you could know that. If someone is blocked, there’s no metric AFAIK.

diyrebel, 9 months ago (edited 9 months ago) to lemmy_support in “view context” broken b̶e̶c̶a̶u̶s̶e̶ (and) lemmy.world has just joined Cloudflare (unrelated)

Ah, thanks for the info. But note that there are two “show context” buttons. In principle, if I am on a broken version I should be able to visit the parent on the originating node & possibly side-step the bug. But in this case the other node blocks me (Cloudflare).

Also note that I would still like a way to block CF instances. I’m in the #threadiverse to participate in the free world & prefer not to feed centralized walled gardens from which I am a refugee. Oppressors should not be able to thrive in the #fedi.

#LemmyWorld is centralized in 2 ways:

• Cloudflare
• disproportionate user population

diyrebel, 9 months ago to lemmy_support in “view context” broken b̶e̶c̶a̶u̶s̶e̶ (and) lemmy.world has just joined Cloudflare (unrelated)

It’s complicated. I first used the chain link which is purely internal. This expands the msg and offers the “show context” option which gives nothing (due to the bug). Then I try the fedi icon and nothing happens at all… no expansion or anything. But I can see that the button is sensitive because it flashed as I clicked it. So then I forcefully copied that external link into a new tab in Tor Browser and it just shoots a blank. No text at all. Then I copied that same Lemmy World link into ungoogled chromium running over tor, which shows #LemmyWorld’s blockade I screencapped.

Note that ungoogled chromium has experimental value and reveals the problem (Cloudflare), but all versions of #Lemmy I have encountered have always been wholly broken in ungoogled chromium. Lemmy forces the use of Firefox-based browsers (and last time i checked Lemmy is quite useless in text browsers as well).

nachtigall, 9 months ago to lemmy_support in “view context” broken b̶e̶c̶a̶u̶s̶e̶ (and) lemmy.world has just joined Cloudflare (unrelated)

Then I try the fedi icon and nothing happens at all… no expansion or anything. But I can see that the button is sensitive because it flashed as I clicked it. So then I forcefully copied that external link into a new tab in Tor Browser and it just shoots a blank.

Indeed. I can reproduce this behaviour with this comment from this thread. See the following screenshot from my network console. The body says {“error”: “not_logged_in”}, so maybe a caching error or something like that? I’ll ping the admin of lemmy.world

https://feddit.de/pictrs/image/3ff8664b-f4fc-42ca-b31c-cc6de51b97f8.webp

running over tor, which shows #LemmyWorld’s blockade I screencapped.

That makes sense. Cloudflare often blocks Tor IPs or spams them with captchas.

have always been wholly broken in ungoogled chromium.

No problem on my side.

https://feddit.de/pictrs/image/0ae703b7-e6a7-4cc5-9e8d-6010aa3cfdcc.webp

diyrebel, 9 months ago (edited 9 months ago) to technology in Google engineers want to make ad-blocking (near) impossible

Maybe you misunderstand the enforcement part of the GDPR. It’s not made for you to get personal enforcement out of it.

You obviously have not read article 77. This article entitles individuals to report GDPR violations to a DPA for enforcement. Article 77 does not distinguish violations against an individual (which I suppose is what you mean by “personal enforcement”) and violations against many. Some of the violations I have reported can only be construed as violations against the general public. E.g. an org fails to designate a DPO.

The problem is there is nothing to enforce article 77 itself. When a DPA neglects to act on an article 77 report, there is no recourse. There is only a provision that allows lawsuits against the GDPR violators. But then when someone did that, and then claimed legal costs, an Italian court decided for everyone in a precedence-setting case that legal costs are not recoverable. Which essentially neuters the court action remedy. So we have an unenforced article 77 and a costly & impractical direct action option.

It works on the basis of multiple infractions being recorded and then escalating the agencies response level.

It’s not even doing that much, in some cases. The report has to get past the front desk secretary and be submitted into the litigation chamber before it’s even considered as something that would indicate a trend. If it doesn’t get past the secretary it does nothing whatsoever. Some of my reports were flippantly rejected by a pre-screening secretary for bogus reasons (e.g. “your complaint is ‘contractual in nature’” when in fact there is no contractual agreement, apart from the fact that the existence of a contract does not nullify the GDPR anyway).

I work with many companies as IT consultant and I can assure you, that they all FEAR the GDPR

So you’re only seeing the commercial response. Gov agencies & NGOs are also subject to the GDPR, which is where you see the most recklessness (likely due to the lack of penalty). On the commercial side banks also don’t give much of a shit about the GDPR because when they violate it there’s a shit ton of banking regs they point to and the DPAs are afraid to act against banks because of the messy entanglement of AML/KYC laws that essentially push #banks to violate the GDPR.

Enforcement of GDPR does happen and you can review every enforcement on a public website called enforcement tracker.

Indeed I’ve browsed through the enforcement tracker. It’s a good prop for making the public believe that the #GDPR is being well enforced. They are cherry-picking cases to enforce to convince the public that something is being done, but people who actually submit reports know better. We see the reports that are clearly going unenforced.

I have also personally requested information about me and my family through the rights bestowed by the GDPR

I have had article 15 access requests denied which I then reported to the DPA, who opened a case but just sat on it. For years, so far.

(edit) By the way, I suggest you leave Lemmy·world for a different instance. If you care about privacy at all, you don’t use Cloudflare nodes. I cannot even see the msg I wrote (which you replied to) because #lemmyWorld blocks me (which I give some detail here: lemmy.dbzer0.com/post/1435972). I had to reply to you based purely on your msg without context.