I mean, pretending to be someone in another instance, “stealing” the username, is trivial. I see the more likely targets being instance admins or high profile users. Should we worry somewhat about this?

  • sim642@lemm.ee
    link
    fedilink
    English
    arrow-up
    11
    ·
    1 year ago

    That’s why instance is part of the username. It’s no different than email addresses.

    • PonyOfWar@pawb.social
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Setting a display name hides the instance bit. You have to check the URL or profile to see which instance they’re on, which people definitely won’t do every time. Especially if an impersonator just joins inside a thread mid-conversation, it won’t be obvious at all that it’s suddenly a different person writing.

      • ritswd@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Just like emails, when people write something like ”Amazon Gift Cards” <yolo@yolo.com> in the From field.

    • skomposzczet@vlemmy.net
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      1 year ago

      His concern is probably that in comments etc. only username is displayed. You have to go to person’s profile to discover their instance.