Question:
How can Fediverse be more "private" while also not ruining the experience for those who like things the way they are?
There's already a way to make your posts private so that there's no way for anyone to see them without your permission.**
Could there be another way without destroying discoverability?
I can't think of any, but I'm obviously not the sharpest tool in the shed.
Obviously Mastodon needs to start by removing the RSS feed or make it an option to turn off. As it stands, most people don't even know it's a thing because it's not documented.
Thoughts?
**Besides admins and moderators. They can see everything if they want to, including DMs.
@BeAware "How can the fediverse be more private"...
Hang on, let us exchange GPG public keys before we proceed. ;)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Well, that sounds like a good idea :)
-----BEGIN PGP SIGNATURE-----
iHUEARYKAB0WIQRyIN0gFN9zYWzDHVl/t9Q2Af9hYQUCZm2/sgAKCRB/t9Q2Af9h
YUUEAP9HLcjmxZcCf+uqAfRHCTF+Pwb+VkmDyWeEG8kqdP0RWQD9Gc+Paqoy+l+D
V9CS89guNju+q3iCId5TnNh7U9gbVw8=
=7b54
-----END PGP SIGNATURE-----
-----BEGIN PGP MESSAGE-----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=/NT0
-----END PGP MESSAGE-----
@BeAware @Larvitz In short, each key is in 2 parts; the public and the private.
I (as a third party), can take your public key and use it to encrypt a message that only the matching private key can reveal.
You can also use multiple public keys to encrypt a message, so you can chat with multiple recipients at once.
Signing works on a similar premise, where you can sign a plain text message with your private key, and me (again as a third party), can use your public key to verify the plain text message was not altered.
The main unfortunate part is access to the private key; email clients like Thunderbird support it natively and transparently, (sending/receiving encrypted messages "just works"), but Mastodon being a web application, doesn't have access to your private key, so a desktop app would be required (or a browser plugin would be needed).