• 0 Posts
  • 30 Comments
Joined 1 year ago
cake
Cake day: July 2nd, 2023

help-circle





  • I have no doubt that China can and does buy data from data brokers. I think it’s unlikely, however that any of the major players are going to be willing to sell all their data on anyone- being able to target ads to individuals is their entire value proposition after all. On top of that, Facebook, Twitter, and Instagram have fallen pretty heavily out of favor with folks in their teens/early 20s (i.e. the demographic most ripe to be sources of bad OPSEC).

    But even assuming that an adversary could buy all the data they could possibly want, doing so could tip off anyone who cared to be watching about the sorts of data they’re interested in. This is generally not something you want as it can reveal your own strategic concerns/intentions.

    Having your own app that can collect whatever you want, where you can promote whatever information/view that you want is a pretty big advantage over buying data.

    If the argument is about privacy, I think banning tik tok is complete bullshit. If it’s about limiting intelligence gathering and influence campaigns, I think it makes more sense.


  • Yes and no. Without endorsing them, the arguments for banning Tik Tok are subtler than Chinese = security risk. The fears, however reasonable you may find them, are largely that it presents a danger of foreign information gathering of detailed behavioral/location/interest/social network information on a huge swath of the U.S. population which can be used either for intelligence purposes or targeted influence/psyops campaigns within the U.S. When you look at the history of how even relatively benign data from sources not controlled by foreign adversaries has been used for intelligence gathering, e.g. Strava runs disclosing the locations of classified military installations, these fears make a certain amount of sense.

    Temu, et al., on the other hand are shopping apps that don’t really lend themselves to influence campaigns in the same way (though, if they are sucking up data like all the other apps, I wouldn’t be surprised if folks in the U.S. security apparatus are concerned about those as well.

    Ultimately, I think the argument fails because it assumes an obligation for Congress to solve every tangentially related ill all at once where no such obligation exists.








  • I think this might want a clean sheet design. At least as I understand it, there are issues with privacy in the fediverse/activitypub vis-a-vis non-public messages. I think it’s also an area where, in order to go the most good, you’d want simple signups and easy engagement (to say nothing of being able to trust that your info has been deleted when you delete it).

    Clearly, I’m here and I value the philosophical underpinnings of the fediverse, but I think it might not be the best fit for dating.

    That said, if you feel like you can solve those problems, you’d be doing a world of good if you’re right.


  • Nonprofit versions of vital social tech. If I had the money sitting around, I’d love to start a nonprofit dating site/app. I met my wife on OKC in 2011 before it got bought up and enshittified. It was great and wasn’t geared toward just keeping you engaged (they’re soooooo bad now!). You’d probably have to gatekeep it with a small fee to disincentive bots, but with a relatively small investment, you could create something really useful for folks without preying on anyone’s desperation.

    Signal would be a good model for this sort of thing.

    Edit: typos



  • I’m a big fan of cheap (as in ~$10/yr vps) and reverse proxy over wireguard. My home ip isn’t exposed and I’m able to quickly spin new containers up by updating my reverse proxy config and adding a wireguard peer.

    I keep two VPSs- one as reverse proxy for all my miscellaneous services and another solely for email. The latter port forwards raw traffic over wireguard to my email server container. That way, even if the VPS gets compromised, my personal data remains secure.

    I end up paying ~ $30/yr (+ whatever I’m paying in electricity) for domain + VPS. It’s a bit more involved than tailscale, etc, but I’m willing to put in a little extra work to make sure I’m not at the mercy of some company getting up to some rent-seeking bullshit.