• KelsonV
    link
    fedilink
    21 year ago

    @petrescatraian @nutomic To some extent.

    When you mark a message as followers only, your server only sends it to your followers, and only shows it to your followers who are logged in

    But if one of your followers is on a malicious (or buggy) server, there’s nothing stopping *that* server from doing something it’s not supposed to with the data.

    IIRC it was CloudFlare’s implementation that recently had to fix a bug where followers-only posts were being shown publicly.

    • KelsonV
      link
      fedilink
      21 year ago

      @petrescatraian @nutomic That still requires your server to send the message to the buggy or malicious server, so Meta or whoever couldn’t just set up a random server and ask for the posts, they’d have to have a user following you first, or you’d have to mention someone on that server in your post.