Comment on Please stop blocking VPNs for established accounts
Zak@lemmy.world 7 months agoThat’s definitely a concern. I selected my provider (Mullvad) because I know someone who worked there, and I have fairly high confidence they don’t do that.
Rooki@lemmy.world 7 months ago
Instance admins chose to block vpns simply because of mullvad and then increased liability, because if there is comming a malicious actor through mulvad and they dont have any logs all liability goes to the instance admin, and then gets questions “Why didnt you just blocked vpns?” etc. etc.
Zak@lemmy.world 7 months ago
I think this is a misunderstanding of the legal situation at least for the US and EU. Platform immunity and safe harbor provisions are pretty strong in those jurisdictions, and the fact that the trail goes cold with the IP address (because it’s a non-logging VPN) does not shift liability back to the platform operator.
Rooki@lemmy.world 7 months ago
But then still the questions comes up “Why didnt you blocked vpns? or TOR?” we will be not the main liability holder, but we will be accountable for those accidents.
Zak@lemmy.world 7 months ago
An investigator asking a question is not liability, and I don’t believe any of the safe harbor or platform immunity laws in the EU or USA condition their protections on denying service to users from IP addresses belonging to providers that don’t provide a certain level of assistance to law enforcement. I’m nearly certain you can’t get in any kind of legal trouble for not blocking privacy-protecting services like Mullvad.
That’s separate from the operational concern: you don’t want people to post CSAM. I don’t want people to post CSAM. Nearly everyone else doesn’t want people to post CSAM, and most of us are willing to accept some level of inconvenience so that you can prevent or limit it. That said, once Lemmy offers more fine-grained tools, I hope lemmy.world will adopt a more fine-grained policy.