Ted Smith typeth: | I'm also not sure what the ethical ramifications are of promoting a | system wherein users are dependent on hosting providers to run their | software - isn't that SaaS? That also shoots any crypto-based security | GNU Social would want to have, because the hosting provider can just | extract the key from memory. I don't think that the sort of "heavy
^-- These days with virtual machine hosting you can indeed automate private key extraction from VMs. This effectively means there is no true privacy if you let a commodity server act cryptographically in your name. | computing is only for specialized companies" attitude is what GNU Social | should promote. Thanks Ted, for pointing that out. I start seeing a P2P approach as more promising to actually deliver on the Privacy requirement we have for this technology. Even in our federated chat world, we are moving away from server centric thinking and with technologies like OTR into having privacy happen on the user's personal device. Chat servers are developing into increasingly agnostic real-time many-to-many routing systems.
