• Red
    link
    fedilink
    English
    1691 year ago

    They are no more safe than sending a message like this :). Except you would be the only person it’s targeted for. besides the admins of both instances can read them as well.

    Which is why I’m the web interface it says it’s not safe/e2e encrypted.

    Worried about it? Add a matrix handle to your profile and then it enables a “send a secure message” button in the UI. And redirects people to use matrix to send messages to you

          • @[email protected]
            link
            fedilink
            English
            2
            edit-2
            1 year ago

            Haha, love the image. I think everyone feels that way the first time they learn it.

            End to end encrypt emails whenever you can too. Now, getting those you communicate with to implement and utilize pgp? That’s a whole other battle.

      • @[email protected]
        link
        fedilink
        321 year ago

        Nothing on lemmy is private. Your instance is just hosted on a server, and in this instance that server is essentially just someone elses computer. Anything you do or say on the server can be viewed by the admin and whoever they decide to delegate access to.

        This is true for practically every online service ever.

      • @[email protected]
        link
        fedilink
        221 year ago

        the admin of your Instance has full access to your account as they have full access to the database that holds your dms

  • mo_ztt ✅
    link
    English
    501 year ago

    Short answer: Unsafe

    Long answer: UNSAAAAAAAAAAAAAAAFFFFFFFFFEEEEEEEEEEFE

  • Xylight (Photon dev)
    link
    fedilink
    English
    411 year ago

    DMs are basically comments without a post and only one regular user can see it. No encryption, and it can be viewed by admins. (Private message reporting is a thing)

  • BlackEco
    link
    fedilink
    271 year ago

    DMs on the fediverse (and Lemmy) are posts with a specific visibility that marks them as DMs. They are sent like any other posts, so there’s no encryption and instance admins could in theory read them in the database.

    • @[email protected]
      link
      fedilink
      13
      edit-2
      1 year ago

      Not in theory, in practice, but this is not high need feature.

      If you need to keep your sexting private, use another platform. If you have a exhibition fetish, go ahead.

      As a coder I can say that e2e encryption is pain in the ass, key generation and exchanging, complex and annoying to do.

      • Amju Wolf
        link
        fedilink
        41 year ago

        e2e encryption is pain in the ass, key generation and exchanging, complex and annoying to do

        No, no it’s not.

        Yes, it’s more complex than sending plaintext. But for starters it’d be extremely simple to generate a keypair for every user and publish the public key with their profile. When sending DMs you’d use this public key to encrypt the message.

        As for storing the private key you could encrypt it with (a derivative of) the user’s password, and store it decrypted possibly just in the user’s browser.

        This simple measure would prevent simple ways of reading the DMs, though obviously you still need to trust that your instance admins are actually serving you the code they claim they do. But it’d definitely prevent “accidental” misuse.

        • @kalleboo
          link
          141 year ago

          As for storing the private key you could encrypt it with (a derivative of) the user’s password

          And now every time a user forgets their password and does password recovery, they lose all their DMs.

          E2EE chat is a difficult problem.

          • Amju Wolf
            link
            fedilink
            English
            1
            edit-2
            1 year ago

            I mean you could just store it encrypted in the database for the basics, and for advanced users allow them to back it up.

            There are tons of ways to improve it, but there is definitely way more you can do without much inconvenience to the users. I doubt losing old DMs is a huge issue when you forget your password…

        • @[email protected]
          link
          fedilink
          11 year ago

          Fediverse adds level of complexity on it, like you mention.

          Malicious Lemmy instance could man-in-the-middle by providing it’s public key in behalf of the user in other side. Normally this can be mitigated by CA, but CA doesn’t fit very well in decentralized system.

          You could add AES with users own password, but problem is that same malicious instance could also steal users password.

          IMHO false sense of privacy is worst than knowing that stuff is unsecure. Again in my opinion fediverse is comparable to yelling in town square.

  • Melody Fwygon
    link
    fedilink
    English
    22
    edit-2
    1 year ago
    • It is not unsafe.
    • It is not 100% private. Admins can read your messages if they choose to investigate your messages.
    • It will not get blasted out to the whole fediverse; just to the recipient you indicated. (Unless an admin from the previous point reads your message and publishes it publicly on the fediverse)
    • You do not get to do anything naughty with it; expect to be caught if you break the rules.
  • @[email protected]
    link
    fedilink
    131 year ago

    Anyone remember the days when they were called PMs? They are least used the word Private in the acronym.

    • @KrapKake
      link
      11 year ago

      Yes, and when we used the term “programs” instead of “apps” for everything.

      • @[email protected]
        link
        fedilink
        31 year ago

        Direct Message. As opposed to Private Message.

        Services at least acknowledge that the messages aren’t private, which is an improvement I guess.

  • @[email protected]
    link
    fedilink
    English
    61 year ago

    Not safe at all because it was not designed to be, it even tells you as much. Use them to exchange e2ee contacts and then use that.