this post was submitted on 29 Jun 2026
95 points (97.0% liked)

privacy

10139 readers
117 users here now

Big tech and governments are monitoring and recording your eating activities. c/Privacy provides tips and tricks to protect your privacy against global surveillance.

Partners:

founded 4 years ago
MODERATORS
 

I see random websites that aren't open source saying they are "encrypted, safe", when they obviously aren't! Come on!

top 45 comments
sorted by: hot top controversial new old
[–] coriza@lemmy.world 3 points 13 hours ago

Having an open source code for the server is good for self hosting but it says nothing about the real server. You can only trust a service based on the API you use, and for privacy you better off not trusting anything, if you want privacy you need to send the data encrypted already.

[–] Radical_Socialist_t00t@lemmy.ca 2 points 19 hours ago

Its already called Meta ;D

[–] XLE@piefed.social 21 points 1 day ago (2 children)

All the text on this website just screams AI-generated.

Every line of code, every feature improvement, every bug fix

Every list of three...

If something stinks this bad, you shouldn't give it private information. I don't know what you'd call it, but I would stick to things that are impolite.

[–] luciferofastora@feddit.org 7 points 1 day ago* (last edited 1 day ago)

Every Tricolon, every overused rhetorical device, every self referential joke

[–] MeowerMisfit817@lemmy.world 8 points 1 day ago

Slop. In all senses. AI Slop, Privacy Slop...

[–] gemakey@lemmy.world 22 points 1 day ago (3 children)

How do you know they aren't?

[–] XLE@piefed.social 24 points 1 day ago (1 children)

Am I in the wrong community here?

Burden of proof is always on the service to demonstrate that they are private.

[–] unexposedhazard@discuss.tchncs.de 23 points 1 day ago* (last edited 1 day ago)

My and i assume any software aware persons general assumption for a computer system is that it is insecure until proven otherwise. But even disregarding the whole open source thing, if they dont make you set your own encryption key, then it most likely wont be securely encrypted or they will just also have the key because they generated it for you in the background.

[–] MeowerMisfit817@lemmy.world 8 points 1 day ago (4 children)

The site doesn't show a "Source Code" option. Neither I can find it by search. Try by yourself, it's here

[–] x00z@lemmy.world 2 points 18 hours ago* (last edited 18 hours ago)

I checked it. The image is definitely sent to the server. The OCR does not run on the client side and it's impossible to know what the server does with the image.

[–] lime@feddit.nu 8 points 1 day ago

that doesn't mean they're not encrypted.

but also this is an online service for something most computers have been able to do locally out of the box for like 15 years, and it hasn't been updated since 2023. it's an obvious red flag even without being unsafe.

[–] bl4ckp1xx13@lemmy.dbzer0.com 8 points 1 day ago (2 children)

If you can't see it, technically this is a Schrödingers cat problem.

The site is both telling the truth and lying at the same time, in a state of superposition.

Only be observing the code would you fall onto one reality.

Although there are people who can observe the code, which differs from the metaphor slightly.

[–] luciferofastora@feddit.org 2 points 1 day ago* (last edited 1 day ago)

To torture the metaphor further, would you trust Schrödinger to sell you a cat if it might not be alive when you open the box?

[–] MeowerMisfit817@lemmy.world 6 points 1 day ago (1 children)

I think one should distrust services that claim to be privacy-respecting without wanting to be opensource. Like, what are they hiding?

[–] iamthetot@piefed.ca 3 points 1 day ago (1 children)

I understand the ethos here but you have to appreciate the irony in that statement.

[–] lIlIlIlIlIlIl@lemmy.world 7 points 1 day ago

What does encryption have to do with showing source code?

[–] unexposedhazard@discuss.tchncs.de 11 points 1 day ago* (last edited 1 day ago) (1 children)

Maybe "FUD slop" that tries to market itself towards people that dont understand software but are vaguely aware of the privacy problems of popular tech and therefore uncertain and scared, making them easy targets for marketing like this.

[–] MeowerMisfit817@lemmy.world 5 points 1 day ago

Hmmm, makes sense.

[–] adarza@piefed.ca 6 points 1 day ago* (last edited 1 day ago)

i usually assume the worst of sites like this, and i skip right over them..


tesseract, a very popular foss ocr engine, maintains a list of 3rd party gui interfaces:
https://tesseract-ocr.github.io/tessdoc/User-Projects-%E2%80%93-3rdParty.html

this is where i would start if i couldn't just scan and use my naps2.