you can disable the webpage and unauthorized API if you so choose. mastodon and pleroma/akkoma provide these settings. gotosocial hides all unlisted posts from public pages.
authorized fetch only provides protection for activitypub, it’s just a single component of a layered stack of protection you can enable depending on your exact threat model.
the privacy threat model of Lemmy is significantly different from a microblog, which is the current target of threads.
(also have none of you heard of consent?)
FaceDeer@kbin.social 10 months ago
If you're going to disable the web page and prevent API usage, why are you even running a Federated server to begin with? It seems to be missing the whole point of the protocol to be trying to use it as a private forum or instant messenger, there are other projects far better suited to that sort of thing.
Have you not heard of public speech? When you stand on a street corner and shout your opinions to the world you can't expect everyone wandering past to seek out your explicit consent before they can hear you. Posting on a public forum means you are deliberately putting your words out where vast numbers of random people can see them. Yes, even Meta.
If you don't want that to be the case then this is probably not the right protocol to be using in the first place.