Skip to content
linux-nerds.org

linux-nerds.org
  1. Übersicht
  2. Technology
  3. Reddit users in the UK must now upload selfies to access NSFW subreddits

Reddit users in the UK must now upload selfies to access NSFW subreddits

Technology
269 180 859
  • lustyargonianmana@lemmy.worldL lustyargonianmana@lemmy.world

    u/spez was the lead moderator of r/jailbait, and when he was caught, he got rid of mod transparency. Ghilisaine Maxwell was likely a l lead moderator of news Reddits as well (u/MaxwellHill). Reddit has always been compromised.

    krompus@lemmy.worldK

    I’m not defending Spez, I think he’s a piece of shit and he did edit other users’ comments that were critical of him, which is fucked up, but I don’t think he was actually involved with that sub. It was possible to appoint mods without their knowledge or consent, and he’s a huge target, someone must have done it as a joke.

    3
  • R redfrank24@lemmy.world

    Hm, I'm going to need some software engineers to critique an idea I have that could at least partially solve the fears people have about their personal details being tied to their porn habits.

    The system will be called the Adult Content Verification System (or Wank Card if you want to be funny). It's a physical card, printed by the government with a unique key printed on it. Those cards are then sold by any shop that has an alcohol license (premises or personal). You go in, show your ID to the clerk, buy the card. That card is proof that you're over 18, but it is not directly tied to you, you just have to be over 18 to buy it. The punishment for selling a Wank Card to someone under the age of 18 is the same as if you sold alcohol to someone under 18.

    When you go to the porn site, they check if you're from the UK, they check if you have a key associated with your account. If not, they ask for one, you provide the key to the site, the site does an API call to https://wankcard.gov.uk/api/verify with the site's API key (freely generated, but you could even make the api public if you want) and the key on the card, gets a response saying "Yep! This is a valid key!" and hey presto, free to wank and nobody knows it's you! If you don't have an account, the verification would have to be tied to a cookie or something that disappears after a while for all you anonymous people.

    As a result, you can both prove that you're over 18 (because you have the card) and some company over in San Francisco doesn't get your personal data, because you never actually record it anywhere. All you have is keys, and while yes, the government could record "Oh this key was used to verify on this site", they'd have to know which shop the key was bought from, who sold it, and who bought it, which is a lot more difficult to do unless the shopkeeper keeps records of everyone he's ever sold to.

    So... Good idea? Bad idea? Better than the current approach anyway, I think.

    P

    This would be better than most of the crap being proposed or implemented.

    But, since the keys are presumably reusable, they'll presumably get borrowed shared by and among minors almost immediately.

    There could be some "Netflix account sharing" style work to deter that, of course.

    R 1 Antwort
    13
  • toastedravioli@midwest.socialT toastedravioli@midwest.social

    The solution to all of this “think of the children” stuff is that devices owned/used by children should have to be registered as a child’s device, which would enable certain content blockers.

    Forcing adults to verify their identity, rather than simply activating some broad based restrictions on devices being purchased for child use, is a waste of time. Kids will still find workarounds. Adult privacy will be compromised.

    Its also an easily enforceable policy to require registration of children’s devices. You can hold the parents to compliance. You can hold the carriers to compliance. Its truly the simplest way to keep kids from accessing porn without having to mess with adult use of the internet whatsoever

    J

    Your solution is worse.

    As is, it is the responsibility of the content provider to make sure that they are distributing only to people who are legally allowed to have it.

    With age-verification the user has to prove that they are allowed to access the content, then the site can distribute it to them.

    Your approach is to distribute the content by default and only deny it to ChildDevices. In order for this to work at all, you have to mandate that children can only use ChildDevices. This is soooo much worse than simply requiring that adults who want to see certain content have to prove that they can legally access it. If adults have reservations about providing ID for pornography, the loss of such content seems to be much less than denying children Internet access. (Although, I'm sure that Lemmings would disagree for obvious reasons).

    0
  • P pinball_wizard@lemmy.zip

    This would be better than most of the crap being proposed or implemented.

    But, since the keys are presumably reusable, they'll presumably get borrowed shared by and among minors almost immediately.

    There could be some "Netflix account sharing" style work to deter that, of course.

    R

    Yeah I did consider that people are going to share keys, but people are going to share accounts too so that's always going to happen. The best thing you can do is stick some safeguards on the keys where if a key is found online, it can be deactivated and potentially investigated since you can tell which shop sold the key. If there's a shop out there just giving cards away to minors, well they're in for a world of trouble.

    Under the Licensing Act of 2003, it's illegal to sell alcohol to an adult if you reasonably suspect that they will be then giving that alcohol to a minor. You can assume the same will apply to people selling Wank Cards.

    T 1 Antwort
    6
  • C cornelius_wangenheim@lemmy.world

    It'll almost certainly be an AI model doing it.

    P

    It'll almost certainly be an AI model backed by 1000s of "trainers" in 3rd world countries doing it, but only until the model is fully trained.

    0
  • S starryphoenix97@lemmy.world

    I keep thinking about some of RPs I've done in my life. Hot, vile, smutty text based RPs. I think about them and wonder if there will ever be a time when those words would be considered illegal and I would be arrested for posting them. This doesn't just protect minors. It tags deviance. Some of you may know the darker corners of Reddit. Imagine if an AI flagged your subs. The delete-rebuild cycle doesn't work anymore. Reddit will always know. If the law asks for suspects for newly illegal thought crime, Reddit will be able to point to all the users on those dark corners. We are moving into a future where privacy doesn't matter and I fear what that means for the kinky among us.

    O

    I'm nowhere near as worried about this for kink stuff as I am about us LGBTQ living in the US.

    7
  • T tollana1234567@lemmy.today

    This is what Facebook does to verify accounts, they also autoban if you try to register with a temp email

    A

    yep i remember seeing that, fuck reddit and facebook

    0
  • T themachinestops@lemmy.dbzer0.com

    Finally it seems the end of Reddit is near.

    S

    That said, as someone who has posted stuff like that and had it spread without my consent, screw (very much not literally) consuming that shit without taking the same risks as the people sharing what they get off to.

    I do think its gross to require it for the other NSFW stuff. Drug forums are very important resources for harm reduction.

    0
  • B bnrnrtbgd@sh.itjust.works

    If the UK is going to require adult verification it should be built into your internet contract. Yeah, I'm an adult. I'm paying my bills, of course I'm a fucking adult. I over pay for this garbage internet.

    Uploading a selfie? The ai is going to determine if you're over 18? Can the ai determine if the selfie is also ai?

    Q

    Just send an AI selfie problem solved.

    0
  • F forkdestroyer@infosec.pub

    I'll never forget how he changed users' text without them knowing it before the 2016 election. Reddit was going downhill before, but that was a turning point.

    D

    For those unaware, this isn't something like replacing a slur with removed, he edited users' comments, turning them into insults to other users.

    I don't care that those original commenters were (likely) pieces of shit, and the people who he made the comments insult were definitely pieces of shit, putting words into people's mouths to make them fight each other is unforgivable. Even if you put out a shitty apology.

    2
  • tarknassus@lemmy.worldT tarknassus@lemmy.world

    Problem is, how do we know that the company is reputable, audited, and so on?

    I’ve seen more places requiring verification - and each one of them seems to use a different verification company. How are there so many of these places, and why aren’t they more commonly known? Like Experian for credit, etc.

    Sure it might sound good to keep them separate - but all that is doing is absolving the content host from liabilities for providing the adult content (somewhere) on their platforms and sites. Reddit don’t want to get involved, and I’ll bet they found the cheapest and easiest provider, or the first one in the search list and thought “good enough”.

    D

    I think it's good that Reddit is trying to continue to allow adult content within the legal framework in which it must operate.

    I guess what I'm not clear on it is what the legal framework is for verification services. Absent rules that require robust privacy protections market forces will push a race to the bottom in terms of cost and data security will be the first to take a hit.

    I know this might seem weird but I think this is one of those cases where a blockchain based smart contract might be the best solution. I'm not exactly sure, as any system that allows one to consume content generally also allows one to copy it, but having a system defined in code in a publicly auditable manner that cannot be changed without notice seems to me to have the capacity to grant the most reassurance.

    I mean I assume that all the verification company is doing now is verifying a person's age and then giving a kind of authorization token that's cryptographically secure that basically says "the owner of this cryptographic key is of age".

    0
  • R redfrank24@lemmy.world

    Hm, I'm going to need some software engineers to critique an idea I have that could at least partially solve the fears people have about their personal details being tied to their porn habits.

    The system will be called the Adult Content Verification System (or Wank Card if you want to be funny). It's a physical card, printed by the government with a unique key printed on it. Those cards are then sold by any shop that has an alcohol license (premises or personal). You go in, show your ID to the clerk, buy the card. That card is proof that you're over 18, but it is not directly tied to you, you just have to be over 18 to buy it. The punishment for selling a Wank Card to someone under the age of 18 is the same as if you sold alcohol to someone under 18.

    When you go to the porn site, they check if you're from the UK, they check if you have a key associated with your account. If not, they ask for one, you provide the key to the site, the site does an API call to https://wankcard.gov.uk/api/verify with the site's API key (freely generated, but you could even make the api public if you want) and the key on the card, gets a response saying "Yep! This is a valid key!" and hey presto, free to wank and nobody knows it's you! If you don't have an account, the verification would have to be tied to a cookie or something that disappears after a while for all you anonymous people.

    As a result, you can both prove that you're over 18 (because you have the card) and some company over in San Francisco doesn't get your personal data, because you never actually record it anywhere. All you have is keys, and while yes, the government could record "Oh this key was used to verify on this site", they'd have to know which shop the key was bought from, who sold it, and who bought it, which is a lot more difficult to do unless the shopkeeper keeps records of everyone he's ever sold to.

    So... Good idea? Bad idea? Better than the current approach anyway, I think.

    D

    I'm a security dev and this is a good idea!

    2
  • sir_kevin@lemmy.dbzer0.comS sir_kevin@lemmy.dbzer0.com

    So, the UK sucks.

    A

    Something similar is coming to Australia as well.

    0
  • U ultramagnus0001@lemmy.world

    Google uses reddit for its AI training. Just saying.

    A

    God help us all.

    0
  • T themachinestops@lemmy.dbzer0.com

    Finally it seems the end of Reddit is near.

    bot@sub.communityB

    Years later, you will find many then teen’s 80yo grandmas’ photos in the leaked database

    3
  • R redfrank24@lemmy.world

    Yeah I did consider that people are going to share keys, but people are going to share accounts too so that's always going to happen. The best thing you can do is stick some safeguards on the keys where if a key is found online, it can be deactivated and potentially investigated since you can tell which shop sold the key. If there's a shop out there just giving cards away to minors, well they're in for a world of trouble.

    Under the Licensing Act of 2003, it's illegal to sell alcohol to an adult if you reasonably suspect that they will be then giving that alcohol to a minor. You can assume the same will apply to people selling Wank Cards.

    T

    people are going to share keys,

    get ahead of it and sell discounted bukkakeys

    you could probably even have a bundle called the "family plan" for the real sickos

    I should get into masturbation regulation marketing!

    Hungry for Adams Apples?
    Try our limp biscuits!

    2
  • R redfrank24@lemmy.world

    Hm, I'm going to need some software engineers to critique an idea I have that could at least partially solve the fears people have about their personal details being tied to their porn habits.

    The system will be called the Adult Content Verification System (or Wank Card if you want to be funny). It's a physical card, printed by the government with a unique key printed on it. Those cards are then sold by any shop that has an alcohol license (premises or personal). You go in, show your ID to the clerk, buy the card. That card is proof that you're over 18, but it is not directly tied to you, you just have to be over 18 to buy it. The punishment for selling a Wank Card to someone under the age of 18 is the same as if you sold alcohol to someone under 18.

    When you go to the porn site, they check if you're from the UK, they check if you have a key associated with your account. If not, they ask for one, you provide the key to the site, the site does an API call to https://wankcard.gov.uk/api/verify with the site's API key (freely generated, but you could even make the api public if you want) and the key on the card, gets a response saying "Yep! This is a valid key!" and hey presto, free to wank and nobody knows it's you! If you don't have an account, the verification would have to be tied to a cookie or something that disappears after a while for all you anonymous people.

    As a result, you can both prove that you're over 18 (because you have the card) and some company over in San Francisco doesn't get your personal data, because you never actually record it anywhere. All you have is keys, and while yes, the government could record "Oh this key was used to verify on this site", they'd have to know which shop the key was bought from, who sold it, and who bought it, which is a lot more difficult to do unless the shopkeeper keeps records of everyone he's ever sold to.

    So... Good idea? Bad idea? Better than the current approach anyway, I think.

    I

    How would you solve replay attacks? Like a million people, of age or not, sharing the same key?

    R 1 Antwort
    0
  • S starryphoenix97@lemmy.world

    I keep thinking about some of RPs I've done in my life. Hot, vile, smutty text based RPs. I think about them and wonder if there will ever be a time when those words would be considered illegal and I would be arrested for posting them. This doesn't just protect minors. It tags deviance. Some of you may know the darker corners of Reddit. Imagine if an AI flagged your subs. The delete-rebuild cycle doesn't work anymore. Reddit will always know. If the law asks for suspects for newly illegal thought crime, Reddit will be able to point to all the users on those dark corners. We are moving into a future where privacy doesn't matter and I fear what that means for the kinky among us.

    I

    That's a subject many never talk about: it assumes we (1) have morality all figured out and (2) it's the same for everyone, everywhere.

    0
  • I iii@mander.xyz

    How would you solve replay attacks? Like a million people, of age or not, sharing the same key?

    R

    Maybe you could limit the number of verifications a key can have in a day? Limit it to say 10 verifications per day. So if you're on Pornhub and have an account, you can have the key associated with the account, verified, and so you don't need to re-verify. But if you go on 10 completely different sites and verify for each one, you can't verify after that 10th one within the same 24hr period?

    You could maybe also include guidelines for integration where if a key is associated with an account, that key can't be used for any other account. You can include that under some requirement that says you have to make 'best efforts' to ensure that a key is only ever used by one account at a time. That way, if a million people are sharing the same key, you'd have to trust that all one million of them will never associate that key with their account because if they do, it invalidates that key for every use other than through that account on that site.

    0
Anmelden zum Antworten