• 3 Posts
  • 46 Comments
Joined 1 year ago
cake
Cake day: June 17th, 2023

help-circle

  • I’ve done a lot of low rate or entirely volunteer work for small, often non-profit organizations in the past, and don’t fall into the trap. It can be thankless and it can be soul sucking.

    However, obviously if you want to eat and if this is your only income right now you’ll have to stick it out a bit. So I hope we are talking like you are virtually working no hours for that rate, leaving you time to expand your resume on your own.

    I have often been asked in the past by friends or acquaintances how you get a good career in programming, and the answer typically is either luck, or a lot of your own hard work.

    I don’t know what the job market is like these days, but historically your papers mean very little to getting a job. A link to your Github goes a long way to demonstrate your abilities and provides a much higher degree of confidence you know what you are doing because they can actually look at your work, and if you are contributing to other projects, that you are a team player. As one speaker said at a Google Q&A I watched when asked if a PhD would increase their chance of getting hired: “well, we won’t hold having a PhD against you”.

    There is also a lot of free course material out there to various degrees of difficulty.

    Programming is becoming more and more competitive, and the ones that succeed have made it their passion, which does mean a lot of unpaid work. So either find projects you are happy to provide your time to to sharpen your skill, or start your own project that you can get satisfaction in building. Actually programming something is always the fastest way to improve your skill.



  • It isn’t that the fediverse doesn’t care, it is that the primary focus here is to prevent you from being tracked. How public you are is your responsibility, as it is everywhere, but there is a degree that you have to be more cautious here.

    There are discussions on how to mitigate this, but it can’t be entirely solved because it conflicts with other goals such as censorship resistence and community safety.

    The comment about EU is the other component. Many instances do not have privacy policies, Lemmy doesn’t provide a default framework, so some admins are temporarily blocking EU if it applies to them. The ones hosted in EU will get rekt if they aren’t or don’t get into compliance. I offer a template to start this process of compliancy.



  • So, obviously an anti Lemmy bias there, and not entirely true, but there are some aspects of federation it can be dangerous to ignore.

    There is a different primary privacy focus here, and it provides an extreme level of privacy but places an extreme level of responsibility on the user for their own privacy, more than most places.

    There is a distinction to a potential scrape and a system designed to duplicate, often irreversibly at submit.

    There are also other things people are often not aware of and the community is not doing a great job communicating. Admins are not doing a great job of protecting themselves either.

    For instance many, still don’t know votes here are entirely public.

    If you understand this all and are comfortable, great. Many do not prepare themselves and would engage differently if they had a better understanding.

    For a take by someone who is pro-federation but not ignoring these concerns see: https://lemmy.ca/post/948217



  • Hey folks, guy in the cross post. Thanks for doing that @hardypart@feddit.de , I feel it is an important discussion for people to be a part of across the Lemmiverse.

    Seems there is some positive engagement on here, and maybe a couple that are a bit confused. I’m going to assume they aren’t just curmudgeons because why would you waste time commenting if you weren’t making an expression of interest in good faith, but maybe not ready to fully invest yet?

    To expand on the TLDR; many new users are coming from monolith platforms (such as reddit; Meta; etc) into the brave new world of federated platforms (like Lemmy) without fully understanding the difference in privacy principles between these two models. Many, more experienced, users do not understand it fully themselves and they make potentially dangerous assertions, or at least ones that could mislead less experienced users into believing Lemmy behaves in a way that it doesn’t.

    It’s all fine and good to say “Everything posted on the internet stays. Never post anything you don’t want public”, but in practice, and especially people coming from monolith platforms, they may make mistakes if they are not highly cognizant of some distinctions between the two models of public, social engagement.

    If you are certain you’ll never, ever have any risk of making such a mistake, the subtle distinction won’t matter to you. If you aren’t sure (it is very easy to trip up here) you are going to want to be educated on where some of the potential hazards are, and you will want to be very, very, very careful. Like you never have been before.

    Even some of the most confident, let’s call them, “perfectly private posters”, often get a little shook when I inform them their votes are entirely public, when they had previously made an assumption they were not due to familiarity with a monolith platform where votes are private. It seems intuitive that they should be private here, but that is not the case. This is a very prevalent misunderstanding right now, and very eye opening to some.

    I much prefer the model of federated because it really gives the user the full control of their privacy to engage to the level they are comfortable with. But it can be very dangerous if not managed appropriately.

    I also feel the wider community is not doing a very good job of communicating this, which is validated by the chord it seems to have struck over on Beehaw. But I come with solutions: a haywire, but comprehensive essay on some of the things a user should be aware of. I have also started a project that provides templates for privacy policies so that admins can add accountability to their instances while also protecting themselves.

    Anyway, a very complex subject many are still learning to navigate, and not something easily reduced to a tldr; As it is, this version is half the length of the original, and you would have been half way through it by now if you just went to the source.

    If you have any questions, I’m here to answer them.


  • I feel you didn’t read the original post. It isn’t about expecting privacy, it isn’t a criticism of the fundamentals of Lemmy as many seem to be taking it (there are many ways I explain how it is more private from being tracked and profiled).

    It is about understanding how privacy is maintained on a federated platform.

    Many users coming from other platforms do not understand the mechanisms here and how they are different.

    Take a look for the comment here about vote privacy, the highest voted comment, or dozens of the other posts where people are coming to this awareness. Many assumed was private due to coming from a platform where this was.


  • ceddit and others you have noted historically have broken for a variety of different reasons, and the others are are currently not functioning as the API they used was banned May 1st. Pushshift, which these services often used, had a mechanism to remove sensitive data you accidentally posted or otherwise wanted removed.

    Archive.org is not searchable, not indexed in mainstream search engines. Also would be responsive to legal requests. It is hard to get a complete profile history on someone.

    All of these external sources require a great deal of extra effort from someone to pry.

    The concern to be aware of here isn’t that it could be scraped, which yes it can. The concern is that it is duplicated by design, wide and broad, on a platform that somewhat functions as a single entity, the instant you hit submit.

    People make mistakes. The Unabomber got caught by doxxing himself with a single phrasing of an idiom. Not complaining, simply saying “be very, very, very, very, very, very, very, very, very careful here”

    And ultimately this comes down to different conceptions of privacy, sure, but one of these conceptions is suspiciously impossible to fix yet simultaneously deflective of the other, that other being directly beneficial to companies and any seeking to control mass populations.

    Exactly. The privacy goal on federation is different. If people are educated, they can be safer.

    You can’t eat your cake and have it too.


  • I’d also argue stalking has more to do with the mental health issues of the stalker than the victim being to blame for how they interacted with the world. We don’t tell a student not to participate in lectures because someone may latch onto something they said and become infatuated. We punish stalkers instead.

    If someone is aware and engaging to their comfort level, no matter how open, I would not blame them, the victim, for being stalked. If someone wanted to be cautious, but they didn’t know the risks here, I would feel guilty for not educating them on how they can protect themselves.

    Idk this is a ramble. I see so many things so often that used to be personal responsibility on online safety, that instead of teaching the skills we make tools. And i feel like not teaching good personal safety and protection is goong to doom any project ultimately.

    You can’t fix ignorance without education.

    Which is the entire point of my post, to encourage education in this space (which again, again, again, is different than what many are coming from with its own unique set of risks)






  • Yeah. I can see a case made on either side.

    This is the point I am trying to drive home. Even with zero comments, zero posts, you could doxx yourself accidentally with votes alone. You came here from another platform and had a certain expectation of how privacy works here. It does intuitively feel like it should be private.

    You are trading some privacy for censorship resistance and community safety in this case, because the goals are different here.

    If you trust your admin to keep your IP and email private, and you manage your comments and posts carefully, I encourage you to let your voice be heard and upvote every sinnerdotbin’s pantless picture post of the week (just don’t like the posts in a different, very small and niche category that can link to you publically as you are the chair of the board at never-nude.social, and there are only 5 members who always like the same posts) . If you are in a country where that support might end with you in a work camp, I’d maybe advise against it in case your local turns out to be a honeypot.

    There is a privacy component to federation that the world really would benefit from, but it will be lost if people are not informed. Incredibly private if you are aware how to navigate it. Horrible if you aren’t.



  • It’s the same camp.

    I’m not making the claim other platforms are better because you might be able to slip in a ninja edit before it is captured. I am making the claim that if you are not on high alert here, more than ever, it will bite you.

    For better or worse, some people are coming here from other services expecting a measure of control of their data that you don’t get here.

    The experimental aspect of this space is the other thing I feel warrants more explicit warning about, and noted in my policy template.