privacy

110 readers

1 users here now

Big tech and governments are monitoring and recording your eating activities. c/Privacy provides tips and tricks to protect your privacy against global surveillance.

Partners:

community.nicfab.it/c/privacy

founded 2 years ago

MODERATORS

Kokomheart@lemmy.ca

QuentinCallaghan@sopuli.xyz

altair222

Who can see my IP on Lemmy? (lemmy.ca)

submitted 1 year ago by BuoyantCitrus@lemmy.ca to c/privacy@lemmy.ca

15 comments fedilink hide all child comments

Looked through the docs a bit and it's not really clear to me: I'm posting this on lemmy.ca, does that mean only that instance knows my IP? Or does every instance it federates with get my ip alongside this post?

This seems maybe important, did I miss a privacy guide to Lemmy someplace? Cursory searching didn't come up with much official. Are there other aspects we should be thinking about here? I'd come across some mention of deleted posts being still available everywhere they were sent but that sorta makes sense -- hard to "unpublish" anything.

you are viewing a single comment's thread
view the rest of the comments

[–] heartlessevil@lemmy.one 29 points 1 year ago (2 children)

I gave a cursory look at the source code.

The database schema doesn't have columns for IP addresses anywhere, but notably not on users or posts.
The only place I see IP addresses in the code is for rate limiting and it doesn't appear to be logged here.
However, the default nginx configuration that reverse-proxies to Lemmy uses access logs that include the IP address.

So, from what I can tell, nobody can see your IP address through Lemmy. But the person who runs the server that your Lemmy instance runs on can trace IPs by looking at access logs. That doesn't get shared with other servers, or even people who adminster your Lemmy instance but don't have access to the underlying server.

[–] BuoyantCitrus@lemmy.ca 2 points 1 year ago

Great, thanks for this. I did glance there but saw the migrations and blithely presumed I'd have to run them to see the resulting schema.

And ya, there's no way I can connect to an instance without revealing my IP to whoever controls that host, I'd be on a VPN if I was that concerned. Mostly just wanted to confirm someone with a self-hosted instance and a script kiddie hobby wouldn't be able to directly mess with the system of whichever hapless commentor says something they take umbrage at.

[–] Sterben@lemmy.ca 1 points 1 year ago

That sounds just about right. That fact that it is open source, already give me a good peace of mind.

Thanks for the information. 😊