cross-posted from: https://links.hackliberty.org/post/2559706

Abstract

This paper examines the potential of the Fediverse, a federated network of social media and content platforms, to counter the centralization and dominance of commercial platforms on the social Web. We gather evidence from the technology powering the Fediverse (especially the ActivityPub protocol), current statistical data regarding Fediverse user distribution over instances, and the status of two older, similar, decentralized technologies: e-mail and the Web. Our findings suggest that Fediverse will face significant challenges in fulfilling its decentralization promises, potentially hindering its ability to positively impact the social Web on a large scale.

Some challenges mentioned in the paper:

• Discoverability as there is no central or unified index
• Complicated moderation efforts due to its decentralized nature
• Interoperability between instances of different types (e.g., Lemmy and Funkwhale)
• Concentration on a small number of large instances
• The risk of commercial capture by Big Tech

What are your thoughts on this? And how could we make the Fediverse a better place for all to stay?

Abstract

This paper examines the potential of the Fediverse, a federated network of social media and content platforms, to counter the centralization and dominance of commercial platforms on the social Web. We gather evidence from the technology powering the Fediverse (especially the ActivityPub protocol), current statistical data regarding Fediverse user distribution over instances, and the status of two older, similar, decentralized technologies: e-mail and the Web. Our findings suggest that Fediverse will face significant challenges in fulfilling its decentralization promises, potentially hindering its ability to positively impact the social Web on a large scale.

Some challenges mentioned in the paper:

• Discoverability as there is no central or unified index
• Complicated moderation efforts due to its decentralized nature
• Interoperability between instances of different types (e.g., Lemmy and Funkwhale)
• Concentration on a small number of large instances
• The risk of commercial capture by Big Tech

What are your thoughts on this? And how could we make the Fediverse a better place for all to stay?

This survey was conducted among 5,101 U.S. adults from May 15 to 21, 2023

% say they are concerned about how ... use(s) the data they collect about them

• Companies: 81%
• The government: 71%

% say they have little to no understanding about what ... do(es) with the data they collect about them

• Companies: 67%
• The government: 77%

% say they have very little or no trust at all that leaders of social media companies will

• Publicly admit mistakes and take responsibility when they misuse or compromises users' personal data: 77%
• Not sell users' personal data to others without their consent: 76%
• Be held accountable by the government if they misuse or compromise users' personal data: 71%

% say that as companies use AI to collect and analyze personal information, this information will be used in ways that ...

• People would not be comfortable with: 81%
• Were not originally intended: 80%
• Could make people's lives easier: 62%

% say that when they think about managing their privacy online, they ...

• Trust themselves to make the right decisions about their personal information: 78%
• Feel skeptical that anything they do will make much difference: 61%
• Feel overwhelmed by figuring out what they need to do: 37%
• Feel privacy is not that big of a deal to them: 29%
• Are confident those who have access to their personal information will do what is right: 21%

% say they ... agree to online privacy policies right away, without reading what the policies say

• Always, almost always or often: 56%
• Sometimes: 22%
• Rarely or never: 18%
• No answer: 4%

Please read the report for a more in-depth look at the data and analysis!

When a user downloads a file from an untrusted source such as the web, Windows adds the Mark-of-the-Web to the local copy of the file.

The presence of the Mark-of-the-Web triggers additional security checks and prompts when opening the file. This helps reduce the risk of executing untrusted content.

Unfortunately, threat actors have discovered that Windows does not always handle or properly apply the Mark-of-the-Web to files served over WebDAV.

Before the release of the Microsoft June security patch, files copied and pasted from WebDAV shares did not receive the Mark-of-the-Web designations. This meant that users might copy and paste files from a WebDAV share to their desktop, and those files could subsequently be opened without the protections of Windows Defender SmartScreen or Microsoft Office Protected View. In particular, this means that there would be no reputation or signature checks on executables.

More info: https://github.com/abrahamjuliot/creepjs

Archive link: https://web.archive.org/web/20240716045110/https://www.takahe.org.nz/heat-death-of-the-internet/

Archive link: https://web.archive.org/web/20240427133051/https://www.nytimes.com/2018/11/24/opinion/sunday/facebook-immoral.html/