True, but my comment was about how it was irrelevant that voyager doesn’t allow tracking through notifications when Lemmy is inherently insecure. Although in an open communication like Lemmy the insecurity doesn’t matter as much.
I’ve made an assumption that op was referring to how messages can be pulled from push notification post decryption since they were talking about upping privacy and data sovereignty.
ok. push notifications don’t universally leak your data. apps can receive either the message contents in the push notification, which is unsafe (less so if encrypted), or a ping that there is some kind of a new notification, upon which the app can connect to the server to fetch them. Popular messaging apps probably do the former for some reason. in mattermost its configurable by the server operator but defaults to leaking data. safe messaging apps don’t do this, they just send an empty notification or such, and the app checks in for updates. signal and matrix are like that, but in both cases they wouldn’t even be able to send the message when it is encrypted.
but back to voyager: to be able to use push notifications, the server needs to send them. Lemmy does not have the capability for that, probably not even in the 1.0 version they are working on. so the way for Voyager to fetch notifications is to check in periodically instead of using a push service.
one more thing: its not actually irrelevant for privacy whether lemmy sends our public comments across google’s push service. we are not anonymous, but we don’t use real names either so it’s partially private, but when google connects your notifications (or just the timestamp of them with comments here), they will be able to figure out what is your account. they can use that information for stalker marketing or give it to the authorities later on
It was mainly my joy that an app’s default position is “we don’t do notifications”. I’ve never seen that before. Usually one is rushing to turn them off.
I guess its privacy on two levels; privacy from potential tracking, but also privacy from intrusion, constant attention etc.
I get that Lemmy is public and it could be irrelevant if my notifications are on or not. Its just such a refreshing position to see in an app.
I mean considering lemmy is public information and messages are unencrypted…
At this point, I gave up a long time ago on hiding my opinions. I’d rather die for my ability to speak out than to stay silent.
But I know that and choose to make public statements. Plus, there are ways to be anonymous-ish about it still
True, but my comment was about how it was irrelevant that voyager doesn’t allow tracking through notifications when Lemmy is inherently insecure. Although in an open communication like Lemmy the insecurity doesn’t matter as much.
oh, I thought OP’s point is Voyager does not even want you to bother with notifications that could make you more addicted
edit: someone else has taken it that way too: https://europe.pub/comment/7070900
I’ve made an assumption that op was referring to how messages can be pulled from push notification post decryption since they were talking about upping privacy and data sovereignty.
wait, I think maybe there is a misunderstanding in what happened in other apps. you are referring to the signal notifications thing, right?
Yes but its not just signal but any app with push notifications
ok. push notifications don’t universally leak your data. apps can receive either the message contents in the push notification, which is unsafe (less so if encrypted), or a ping that there is some kind of a new notification, upon which the app can connect to the server to fetch them. Popular messaging apps probably do the former for some reason. in mattermost its configurable by the server operator but defaults to leaking data. safe messaging apps don’t do this, they just send an empty notification or such, and the app checks in for updates. signal and matrix are like that, but in both cases they wouldn’t even be able to send the message when it is encrypted.
but back to voyager: to be able to use push notifications, the server needs to send them. Lemmy does not have the capability for that, probably not even in the 1.0 version they are working on. so the way for Voyager to fetch notifications is to check in periodically instead of using a push service.
one more thing: its not actually irrelevant for privacy whether lemmy sends our public comments across google’s push service. we are not anonymous, but we don’t use real names either so it’s partially private, but when google connects your notifications (or just the timestamp of them with comments here), they will be able to figure out what is your account. they can use that information for stalker marketing or give it to the authorities later on
Ah fair, didn’t think of it like that
Hi folks.
It was mainly my joy that an app’s default position is “we don’t do notifications”. I’ve never seen that before. Usually one is rushing to turn them off.
I guess its privacy on two levels; privacy from potential tracking, but also privacy from intrusion, constant attention etc.
I get that Lemmy is public and it could be irrelevant if my notifications are on or not. Its just such a refreshing position to see in an app.