this post was submitted on 01 Dec 2023
93 points (72.7% liked)

Privacy

31876 readers
1 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
93
Why you should never use Facebook or Google to log in to third party websites - what to do instead (tilvids.com)
submitted 2 years ago by Masimatutu@mander.xyz to c/privacy@lemmy.ml
21 comments fedilink hide all child comments
top 21 comments
sorted by: hot top controversial new old
[–] skysurfer@lemmy.world 41 points 2 years ago (2 children)

Seems someone doesn't understand how OAuth works. It does not automatically give full access to your social media accounts, location history, and device cameras as the video says.

Using the Google button for instance will tell you exactly what permissions are being requested every time you login. Generally, it will be name, email, language, and sometimes profile picture. Aside from the profile picture you would give all the same information anyway to create an account. At least with OAuth there is no worry about passwords, especially for people who don't have good password practices and reuse passwords between different sites.

[–] LostXOR@kbin.social 15 points 2 years ago

What caught me most off guard was him saying that OAuth somehow grants sites access to your camera. That's a permission controlled by the browser and not at all related to OAuth.

[–] reboot6675@sopuli.xyz 3 points 2 years ago

I've always had this question. When I login with Google, I know what data the website will get from my Google account. But what data can Google get from the website and my usage of it, if any? (besides, of course, that I have an account on said website).

[–] ____ 31 points 2 years ago (2 children)

How about a headline that’s not pure clickbait.

[–] Synthead@lemmy.world 8 points 2 years ago

NEVER CLICK THESE ↪️

[–] GeneralEmergency@lemmy.world 3 points 2 years ago

How else would you attract the paranoid weirdos.

[–] TCB13@lemmy.world 18 points 2 years ago (2 children)

What to do instead - be a normal human and create an account at the website.

[–] capital@lemmy.world 20 points 2 years ago (2 children)

After generating a unique email and password combination for said website.

[–] Bonehead@kbin.social 13 points 2 years ago (2 children)

...then storing that information in Chrome's auto-fill because that's way too much to remember. And the circle is complete.

[–] Masimatutu@mander.xyz 32 points 2 years ago* (last edited 2 years ago)

Bitwarden, everybody!

Edit: and F I R E F O X

[–] OhmsLawn@lemmy.world 6 points 2 years ago (1 children)

Password manager. Now if I could just get Google to purge all my old passwords, that would be great.

[–] Samsy@lemmy.ml 2 points 2 years ago (1 children)

No problem, just use new passwords.

[–] OhmsLawn@lemmy.world 2 points 2 years ago

I do.

[–] BradleyUffner@lemmy.world 2 points 2 years ago (1 children)

And get your login details stolen because they didn't hah and salt passwords correctly when the site is almost immediately hacked.

[–] wincing_nucleus073@lemm.ee 2 points 2 years ago (1 children)

random password, email alias

[–] BradleyUffner@lemmy.world 1 points 2 years ago

Pancakes, bumblebee, gazpacho soup

[–] Samsy@lemmy.ml 3 points 2 years ago (1 children)

Mango

[–] OhmsLawn@lemmy.world 2 points 2 years ago

I just went through yesterday and killed a couple of these. Unfortunately, Airbnb retained my photo after I pulled the permission.