@risottobias I'm trying to understand... How is "send message from 1 person to another" a different purpose than "send message from 1 person to another"? How is "type in your username and password" more misconfigurable than "type in your username and password"?
Posts
-
Launch of Social Web Foundation -
Launch of Social Web Foundation@risottobias The user interface can be changed to anything you want when it comes to open protocols like ActivityPub and Email. What features do people want that can't be done with email? I've seen typing indicators, read receipts, E2EE, video conferencing, 1-click reactions, etc. all implemented with email. The reason Youtube, Instagram, X do things with proprietary protocols is for user control and abuse. That's what we do not want, right?
-
Launch of Social Web Foundation@risottobias But it can go one way the other way too! Thus making it 2 ways. Your [email protected] address is public already anyway. How is sending messages to that via ActivityPub any different from sending via SMTP? SMTP already has the advantages of a huge spam-blocking ecosystem, multiple encryption capabilities, & vast client/server software options. Inventing a new protocol that does the same thing isn't going to garner that kind of ecosystem overnight.
-
Launch of Social Web Foundation@risottobias No it wouldn't. They would know your fediverse address, and type the message into a form which then gets privately sent to you.
-
Launch of Social Web Foundation@risottobias @evanprodromou @ohmallory
a & b) admins snooping on or turning over messages is exactly why your private messages shouldn't be on a public ActivityPub server at all. It should be a completely separate system that you can self-host for privacy (like we can with email). I really like the idea of just a contact form on the profile that uses the existing email notification system to send a private message. -
Launch of Social Web Foundation@evanprodromou @ohmallory
The DM thing here (https://socialwebfoundation.org/program-protocol-e2ee/) sounds like a bad idea. We already have a standard protocol for that; email... upgrade e2ee standard for that first. Plus, don't most Social Web servers already send emails to users for things like password resets and notifications? Why complicate things with double messaging systems? Public and private should be completely separate: https://bookofadamz.com/the-fediverse-should-avoid-bundling-private-messages-completely-and-implement-this-instead/