On Mastodon, Followers-only posts are only visible to your followers – and to admins of any instances your followers on. But if you haven’t turned on “approve followes”, anybody who’s logged in to an instance you haven’t blocked can follow you and get access to your followers-only posts.

In your view, are followers-only posts public?

The linked post is a Mastodon poll, and I’ll also put in replies here so that you can just upvote the ones you agree with!

  • deegeese@sopuli.xyz
    link
    fedilink
    arrow-up
    7
    ·
    1 year ago

    Public but not indexed and not in your public profile.

    Viewable only by someone with a link to the post or thread.

  • modulus
    link
    fedilink
    arrow-up
    5
    ·
    1 year ago

    On my instance, the following control measures apply:

    • Only public posts are visible through the web interface.
    • Only public posts appear on RSS.
    • Following requires approval.
    • Authorised fetch is required.

    So I think I have reason to feel fairly strongly that follower only posts are not public, and even unlisted posts are reasonably restricted.

  • Die4Ever@programming.dev
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    1 year ago

    couldn’t a malicious instance or fork just ignore who is trying to access the data and show all the toots that have been federated at all? anything that can be retrieved by another instance is public

    it’s kinda like when Steam asks for your age when looking at an M rated game

  • Steve@communick.news
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Anything posted to “Social Media” in any way, I consider public. If you want privacy, you need something that’s directly one to one at least, ideally E2EE.

  • heavyboots
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    I mean it’s pretty much the same as Twitter? All your posts are public* and anyone can follow you unless you activate the follower approval option. It’s the first thing I did when I created my Mastodon account. (And the first thing I did on Twitter as well.)

    • Actually now I think about it, on Twitter I also made my account private immediately.