The Spy Pixel problem - eviltoast

Unsurprisingly, some folks on raddle and reddit seem to have a big problem with lemmy. A lot of it is pure FUD.

However, this appears to be a valid security concern:

https://raddle.me/f/fediverse/166674/lemmy-is-so-much-like-email-it-even-brought-back-spy-tracker

Any thoughts on how fixable this is?

Of course the general consensus on reddit is “lemmy devs are clueless and dangerous”. I’m pretty sure a lot of it is one guy with multiple alt accounts, tho. He has a Joe McCarthy attitude about lemmy because of one of the primary devs.

  • Teppic@kbin.social
    link
    fedilink
    arrow-up
    20
    ·
    1 year ago

    It is being discussed - here is a thread from yesterday:
    https://kbin.social/m/support@lemmy.world/t/204434/Tracking-Lemmy-users-by-spy-tracker-pixels

    And here is an ongoing discussion about a possible remedy:
    https://github.com/LemmyNet/lemmy/pull/3550

    But worth noting, unlike email the ‘view’ isn’t linked to an individual and an email address, and also broadcasting your IP address (yes and some meta data) as you browse isn’t unusual. Every page you visit could be doing this not just Lemmy.
    Yes ideally this should be fixed, but in my view it is also a bit of a storm in a teacup.

    • Boozilla@lemmy.oneOP
      link
      fedilink
      arrow-up
      4
      ·
      1 year ago

      Thank you, this is exactly the kind of info I was looking for. I figured someone was on top of this and the reddit dipstick was just being overly dramatic as usual.