0807 Defends Content Scanning Trade-Off as Privacy Critics Demand Full Encryption
A self-hosted ephemeral file host with Tor onion service has sparked debate over its lack of end-to-end encryption and source code transparency. Users are questioning the service's security and privacy claims, with some calling for full open-source availability.
Supporters like 0807 argue that the absence of end-to-end encryption is a deliberate trade-off to allow scanning for illegal content like CSAM and malware, emphasizing the importance of security and legal compliance. Critics such as ultimate_worrier and Pika insist that closed-source software is a non-starter for privacy, demanding full transparency and open-source availability. Others, like irmadlad and Natanox, highlight the risks of using the service without encryption and the lack of guarantees for file deletion.
The community consensus leans toward demanding end-to-end encryption and source code transparency, with sharp divides between those prioritizing privacy and those valuing content moderation. The debate underscores a fundamental tension between security and privacy in self-hosted services.
Key Points
#10807 defends the lack of end-to-end encryption as a necessary trade-off for scanning illegal content.
0807 argues that without encryption, the server can actively scan for CSAM and malware, which is a critical security and legal consideration.
#2Privacy advocates demand full encryption and open-source availability.
ultimate_worrier and Pika insist that closed-source software is a non-starter for privacy, calling for transparency and trust.
#3Critics highlight the risks of using the service without encryption and file deletion guarantees.
irmadlad and Natanox point out the service's lack of encryption and guarantees for file deletion, making it risky unless self-hosted.
#4The absence of a git page for self-hosting raises suspicion.
Natanox criticizes the lack of a git page, which makes the project less trustworthy.
#5Users question the service's security and privacy claims.
Pika and sem note the lack of source code and proof of encryption, making it hard to verify security and privacy claims.
Source Discussions (3)
This report was synthesized from the following Lemmy discussions, ranked by community score.