I mean, I'm probably overreacting as every mastodon 3rd party service or app has the same token, but I'm paranoid about trust and privacy.

The last thing I want is for someone to trust a Pixelfed server only for the admin to take advantage of the trust and read their DMs for example.

Even though I trust our admins and believe none of them would do that, just the possibility makes me uneasy.

2
Share
Share on Mastodon
Share on Twitter
Share on Facebook
Share on Linkedin
Jason ON

@dansup

The possibility of that should make everyone uneasy.

0
1y
lars

@dansup If you don't trust the admin, you shouldn't use the service. Pixelfed is open source, meaning any admin can modify the code to request more permissions and save all tokens.

0
1y
Replies