@gerowen Not to defend a people farmer like Google/Alphabet, Inc. in any way but, in this case, I’m assuming those are cryptographically-secure (which I can’t tell by looking at them, I’d have to see how they’re generated) URLs so there’s really no chance someone could stumble upon them.
Conversation
Notices
-
Aral Balkan (aral@mastodon.ar.al)'s status on Friday, 24-Sep-2021 10:15:22 CEST 
Aral Balkan
-
admin@masto.nogafam.es's status on Friday, 24-Sep-2021 10:15:22 CEST
admin
@aral @gerowen not only that. Pixelfed does still let you see a picture/video if it is archived/follower-only, or even private, by using it's URL.
The fact that nobody knows that URL, is the actually secure thing
-
Marcus (gerowen@mastodon.social)'s status on Friday, 24-Sep-2021 10:15:25 CEST
Marcus
If you use #Google Photos, there's a non-zero chance that there are secret, yet public URLs attached to your photos that allow un-authenticated access to every picture in your account. Mine did, and I tested the addresses in incognito and tor browsers and they worked. #privacy
-
All tiflolinux.org - GNU Social content and data are available under the