EDIT: Initial self-votes don’t federate, so it seems this specific way doesn’t work.
Am I missing something, or is Piefed’s private voting kinda trivial to reverse engineer as long as every user by default upvotes every post and comment they make?
If you have a username and want to find the matching private voting ID, search through that user’s posts and comments for an entry that only has one upvote. The vote cast on that entry will be the private voting ID.
If you have a private voting ID and want to find the matching username, search through all votes cast by the private voting ID to find a post/comment that only has one upvote. The user that posted that entry will be the original user.
If it really is this easy, it seems like it’s sort of a false sense of security. On the other hand, if automatic upvoting of your own content could be disabled by default, that would prevent this from working.
Ugh, that’s really unfortunate. I will probably just disable voting buttons for myself if that ends up being the case.
I don’t really know what’s stopping someone from creating 100 alt accounts without private voting though? If the voting ID is consistent and you can take punitive action on the voting ID, it seems the same as if the person had a cleartext name. The real problem is that an instance is allowing these 100 alt accounts to sign up and manipulate votes, which I assume there are already solutions/measures for?
Don’t mind me though, I’m fairly new to all this, and I’m sure everyone’s thought of all these vectors before. I just hope that there is some sort of middle ground that doesn’t inevitably allow mass data harvesting.
nothing, but at least they can be identified and taken down. it hasn’t been too long ago that i banned 346 accounts involved in such a scheme, and if these accounts had been using piefed’s private voting, they would have been much harder to identify and separate from real users. as a result, this likely have had a much higher chance for false positives catching real users. activity beyond votes alone is very useful to isolate these abusive accounts. for example, a real account will frequently have a range of legitimate comments and those won’t just look like LLM garbage posting. there can also be other patterns, like similar/same usernames across instances. there was another case not that long ago where I banned around 80 accounts using the same name on many different instances, one per instance, to boost votes on one of those accounts.
there is no easy way to prevent people from creating a bunch of alts. there are various options that can be done to detect creation of multiple accounts, and piefed also has some features to help detecting with that, but there is only so much you can do without this also becoming a privacy nightmare with device fingerprinting etc. it’s not without reason that a lot of larger services with community functionality will prompt you to attach a phone number and/or using invasive fingerprinting measures to prevent people from creating a bunch of accounts or evading bans.
That makes a lot of sense, thanks.