Mastodon is not a good place to share private data. It's a distributed set of SQL databases. There's no real oversight or accountability. There's not really even an attempt to secure anything. There's no encryption, even for DMs. It's all stored in plaintext in Postgres (and often elsewhere, like Elasticsearch and Amazon S3).
@root true day. but it's not designed for security. It's designed for no ads and no attention-sucking algorithms
"Socialize freely and organize responsibly" is how I put it in the docs for the instance I have in soft launch
We need to be able to set the privacy of our toot to the instance only, thus we would know exactly where our message is stored.
@root I'm old enough to remember when CB radio was popular (that anyone could listen into, join in or record to gain info for later) and later when mobile phones were analogue (so easily monitored with scanners, usually illegal but still widely done), so I treat Mastodon use with similar caution
To be fair many admins and other people do warn users about this, and to use other services with end to end encryption for more private comms..
@root private data is not for share.
@root now, to be fair, that describes most online services, even some more "pro" than Mastodon (heck, I remember a number of cases of big services that didn't even crypt the user passwords properly).
Yup, wie should use a blockchain for that. It's completely encrypted™ and does not lose data™.
i run my own instance just for me