this post was submitted on 02 Mar 2025

40 points (95.5% liked)

Asklemmy

45414 readers

1035 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy 🔍

If your post meets the following criteria, it's welcome here!

Open-ended question
Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
Not ad nauseam inducing: please make sure it is a question that would be new to most members
An actual topic of discussion

Looking for support?

Looking for a community?

Lemmyverse: community search
sub.rehab: maps old subreddits to fediverse options, marks official as such
[email protected]: a community for finding communities

~Icon~ ~by~ ~@Double_[email protected]~

founded 5 years ago

MODERATORS

[email protected]

Which is most privacy friendly instance of lemmy? (lemmy.today)

submitted 17 hours ago by [email protected] to c/[email protected]

22 comments fedilink hide all child comments

also i can't self-host.

top 22 comments

sorted by: hot top controversial new old

[–] [email protected] 12 points 13 hours ago* (last edited 13 hours ago)

Lemmy, and ActivityPub in general, is quite bad for privacy. To the point where I doubt it'd be legal for a company to host a server within the EU. Everything is handled by volunteers and amateurs. Privacy policies are bog standard or barely enforced. You have no idea what servers are using and selling your information, and any server can follow basically any community.

The easier it is for someone to create a new account after getting kicked or banned, the more likely it is that other servers will block that server and leave you with a near useless Lemmy account.

[–] [email protected] 1 points 7 hours ago

your own self hosted one

[–] [email protected] 32 points 17 hours ago* (last edited 17 hours ago) (2 children)

~~[email protected] seems pretty active to me.~~

Sorry, misread privacy for piracy. I'll show myself out.

[–] [email protected] 15 points 16 hours ago (1 children)

If it makes you feel any better, I thought the same until I read your comment

[–] [email protected] 2 points 13 hours ago

Cheers!

[–] [email protected] 2 points 11 hours ago

This server is probably the best for privacy too FWIW

[–] [email protected] 12 points 14 hours ago (1 children)

Privacy and social media don’t go together. Logs of your IP are the least of your worries.

[–] [email protected] 5 points 13 hours ago

Yeah, especially Lemmy.

Lemmy is apparently bad if you want privacy.

IMO IP logs aren't that big of a deal.

[–] [email protected] 2 points 10 hours ago

Lemmy.ml requires no email. The only person who can doxx you is yourself.

[–] [email protected] 16 points 16 hours ago (1 children)

I would think the most privacy friendly would be to make a random user and not give out too much info. There isn’t anything else other than email. Hosting your own instance doesn’t equal privacy either as it’s super obvious since all content on that instance is from that user lol

[–] [email protected] 3 points 16 hours ago (2 children)

I'm not sure, but I've heard that some instances log IPs.

[–] [email protected] 7 points 15 hours ago

if theyre smart, they dump their logs regularly. i think my instance is 36 hours. that data is a liability.

[–] [email protected] 5 points 16 hours ago (1 children)

I think they all do in the logs.

[–] [email protected] 3 points 16 hours ago (1 children)

Does each comment store the user’s IP address as well? (Like it would on other forum software?)

[–] [email protected] 3 points 15 hours ago

The Lemmy software seems to only store IPs for login tokens (i.e. on login).

It's likely many instances store IPs short term in access logs as well.

[–] [email protected] 9 points 16 hours ago (1 children)

Given that all Lemmy instances are run by private individuals you should probably think about using a vpn (or dns proxy at the very least) to obfuscate your true location and data. This applies to any mainstream or corporate social media platform, obv.

[–] [email protected] 5 points 16 hours ago* (last edited 16 hours ago) (2 children)

Some instances block connections from VPN.

[–] [email protected] 18 points 16 hours ago (1 children)

So don't use those ones

[–] [email protected] 2 points 16 hours ago

fair enough.

[–] [email protected] 2 points 13 hours ago

lemme.ee doesn't

[–] [email protected] 6 points 17 hours ago* (last edited 16 hours ago)

After proving that I wasn't a bot via Matrix, sh.itjust.works activated my e-mail despite having an obviously bogus e-mail registered, so that's a plus.

[–] [email protected] 3 points 16 hours ago* (last edited 16 hours ago)

What are your goals?

I would say it's really a combination of the instances policies and their jurisdiction, and in terms of jurisdiction it also depends on where you live (e.g. you may have more protections under law if the instance is hosted in your country)

There's also nothing stopping you from using multiple instances — siloing your interaction in different types of communities in different accounts on different instances. This may be useful if part of your privacy concerns are having all of your post / comment data on one account on one instance.

Edit: You can also use an email aliasing service to avoid even giving your email out. There are aliasing services such as Addy.io, Simplelogin (subsidiary of Proton AG), Firefox Relay (Mozilla), as well as some email providers which provide (iCloud, Proton, Mailbox.org to name a few)