When you share a YouTube video using the share button it adds “si=some_unique_code” to the URL. If you don’t remove that it shows your personal account to anyone who receives it so that they can chat directly with you. For a lot of people this is their real name.
I’ve seen it all over Lemmy so I figured I’d mention it here! You only need the stuff before the question mark in the URL to let others see the video.
This can also be turned off in your YouTube settings under the privacy section. The setting is “channel visibility for shared links”. It will still add the si code for tracking though.
It should be common practice if you commonly share links. Try removing the query string (everything after and including the question mark). See if you get to the same page. If you do, don’t use the query string.
Query string parameters are rather often used for tracking. Look for gclid parameters after you click a google ad, for example.
The harder ones to bypass are Facebook and Reddit share URLs, which give zero indicator of their destination; it seems impossible as the recipient of such a URL.
At least with bit.ly, one can add a
+to the end of the URL and see data on it, including the original link (to then safely access without adding to its click counter).Yeah, there are always ways… any service could easily generate unique paths that require a server-supplied redirection to the main target. Then the server just needs to stitch up (1) where was that link generated and (2) who arrived at the redirection page. Users would have no way to determine the target link without exposing themselves to being tracked.
A platform like Reddit can do this too, by replacing the links you put in your comments/post, so they redirect to the original link. They can even make it continue displaying the original link, while actually linking to the redirect page.
FYI on desktop you can right click on the video and select “Copy video URL”, it doesn’t include the tracker string. Wish they’d let us remove it from the Share button, I’ve simply removed that button with uBlock Origin.
It’s also missing from my patched YouTube app’s Share on Android, not sure if that’s one of the patches.
Yeah, that’s certainly a patch. NewPipe, PipePipe, etc. all also remove
?si=.
If you never sign into YouTube and sharing links from a third party application, what is it that they append? Curious what makes up that shared id.
https://f-droid.org/packages/com.svenjacobs.app.leon
I use this, and it works really well for the big apps and services.
That app seems not as transparent as it could be since it doesnt give any detail on the removed stuff; I recommend URLCheck instead, which is fully transparent about all trackers and even lets you pick which ones to remove at will.
You should also known that TikTok does this by default and the generated code is impossible to remove afaik, it’s part of the video identifier.
So when sharing a tiktok video always download it and share the file.
I recommend downloading it anyway, since that doesn’t require people to use tiktoks site, but if you paste the vm link yourself into a browser, it’ll redirect to the canonical link, without the tracker.
vm.tiktok.com links do the same (they give a popup with the user that shared it). If an Instagram url has the
igshidorigsh(can’t remember which one), it can do the same.Done. Thank you.
The frequency with which I’ve seen the
siattribute included in youtube links has made me painfully aware of just how many people are not using the internet the same way I do; they’re experiencing the internet through a handful of mobile apps, not through a web browser on the desktop.even some IT pros are leaving it in, knowing well what it does. some people just couldn’t care less.
yup. I don’t use the google apps for ANYTHING. Even on my tab/phone, I use a browser (orion, with ublock origin installed) to watch youtube. It’s really annoying, but it’s better than using their spyware app.
Even then… what proportion of people do you think know the parts of a URL? Or know what a URL even is…
You may be in a bubble, friend
A problem I’ve had is people using those Google share links. I keep yelling them that I’m not clicking that link no matter how funny or interesting it may be.
This is why I use YouTube revanced. The features for it are great.
Traffic is roughly 70-80% mobile on most websites I know.
til people don’t reflexively strip out everything after the ? unless you know exactly what it’s doing
Hey look at this video: https://youtube.com/watch
tbf, it’s intentionally designed to be malicious and deceiving
yup. all you need is the v=vkjlhaswlikuj3hg4 thing. that is the only thing you need, as it identifies the video. Strip everything else.
most people don’t even know what an URL is, and how it’s structured. if their browser does not remove the tracking parameters, they won’t get removed.
Since 4 March 2026 I am seeing “is=” in some YouTube links instead of “si=”, also with the 16 character ID.
Not sure if my anxiety is justified here, but I am not tech savvy whatsoever. And I worry about all the things I’m doing that’s probably completely giving myself away that I’m just unaware of. I didn’t know about this at all.
pretty much everything that has a “share” button does this. it’s not to help you share the link more easily than copying from the address bar - it’s to harvest your data
Even voyager gives a link to vger.to when you hit share instead of a direct link to the thing you want to share. No idea what they are doing with it (other than trying to redirect it to the app). Maybe it’s set up to just use the localhost and that’s all it does, but I usually strip that part out because I have no idea either way.
vger.to solely exists so i can text dumb memes to my non tech inclined friends, and they open in voyager on their device instead of the web.
It’s a dumb service and has zero analytics other than cpu disk bandwidth use lol
Would you be able to add an
open in browserbutton, or a way to just copy the normal link as well? I can’t see any way to do it in voyager. It’s probably my only issue with it.Yeah you can change default in Settings, or if you’re sharing a post you can long press the share icon in the post bar right under the post to select on demand
voyager event supports sharing via author, community, or your own instance.
Yeah, this is why that vger.to link is so annoying for me (other than triggering the reaction to the dark pattern, even if it isn’t exploiting it like what seems to be the industry standard these days), because most of the time when I use the share thing, I’m really just trying to get the url to open it in my browser, so that “open in voyager” link is the exact opposite of what I want, though I can see how it might be nice for actually sharing the link with others.
It is . But now you know . Don’t freak - and you might even learn how to install a privacy based browser, vpn, or operating system. Keep the tinfoil har dude and best of luck
I do use a VPN, but tha’ts about it.
Along similar lines be careful of the images you post if you location tag your photos. A lot of the larger websites will strip the location data by default but some do not. I’ve saved a handful of photos from reviews off the internet and now have people’s home addresses where the photo is of the product in their living room or whatever.
If you go to the ‘map’ section of your photos app it arranges them by location.
You can turn location tagging off globally when photos are taken or usually when you go to share a photo there is an option buried in a menu to strip location data(on mobile).
I have an iOS shortcut that remove exit meta data.
You can turn location tagging off globally
That’s one of the first things I did when configuring my kids phones.
YSK PieFed automatically strips that out.
Edit: posts only, not in comments.
Like if you post a YouTube link, the platform detects it and automatically edits the link?
Yeah
Pretty cool!
Edit: I posted this from PieFed, and it preserved the “?si=” part of the URL, which I have since edited out by hand.
This one I loaded from a private-browsing tab. The URL includes the tracking ID but it may not be connected to me.
It doesn’t do it in comments, just when you make a post.
IMO You should add that detail to your top-level comment, as it’s going to be seen by more people than this clarification that definitely runs counter to how I interpreted your comment.
That would explain some things. Isn’t it a little bit odd to handle those differently? Oh well.
They might be talking about the default web interface.
That’s what I use!
Thats great!
Thank you for that.
It would be great if link cleaning and auto-mirroring was part of the lemmy UI itself.
Yeah, would be best within particular client implementations. Not core Lemmy tho. Too many ways to do this and high maintenance.
I think that would probably be a client implemented feature, not a Lemmy one. I also don’t design social medias, so I don’t really know.
Yeah “lemmy-ui” is the official web app for lemmy. There might be other web frontends or clients that already do this.
I remember telling this to people on reddit and getting downvoted to oblivion while redditors squawked “who tf cares bro”
We set up a bot on r/asmr to reply to anyone posting a YouTube link containing the “si=” parameter, warning that it was likely a tracking ID that Google could potentially use to tie their YouTube account to their Reddit account with some degree of probability and suggesting that they delete their post and re-post without the si= parameter. Many were grateful for the warning and info but some didn’t care. We decided to disable the warning after a few weeks.
why did you disable the warning?
fitting
I first heard about it on reddit but it was before the API exodus, so…














