I’ve been following their work on implementing this via their newsletter and it seems to be coming along nicely. Can’t wait for them to complete implementing it.

Really looking forward to SSO support!

Desktop: Windows XP

Linux: Probably Raspbian on a Pi 2 b

Tech has come a long way since then lol

Just because it’s not public facing doesn’t mean that it’s not an issue. It might be less of an issue, but it is still a massive vulnerability.

All it takes is one misconfiguration or other vulnerable system to use this as a jumping off point to burrow into other systems. Especially if this system has elevated access to sensitive locations within your network.

🤮

Your best bet is going to be a 4U chassis. You can get 2U chassis with consumer PSUs, but they are going to be more expensive and very limited in terms of parts that will work. You can easily find 4U chassis that support regular ATX internals with proper mounting holes for the PSU and mobo standoffs.

There are some small SuperMicro servers that use Xeon-D (I think? Very low power Xeons that are passively cooled), but you’re pretty vendor locked in with those.

Do not use external drives for this. TrueNAS doesn’t support it, and you’ll be limiting your speeds to that of the USB bus, which is not nearly as fast. Pointless going SSDs if you are using external drives.

… how the hell have I never heard of this?

I don’t think it’s worth the devs’ time to implement e2ee for DMs, there are lot of other things that need to be fixed first. Not only that, but if it’s implemented in Lemmy, it’d make Lemmy non-interoperable to DM users from other federated platforms such as Mastodon or KBin. Which, I’m not sure works right now, but in theory would be possible.

Also, yes, that is generally the case.

I highly doubt it will, there are many much better solutions available, and as it says when DM’ing someone, you can you Matrix for e2ee. In fact, there is even an option in the profile settings to provide your Matrix username.

Implanting e2ee within DMs is massive scope creep and also really difficult to do properly.

The general rule is basically “never implement your own encryption/security, just use what’s already been implemented by people who actually know encryption/security”.

I’m pretty sure it is

I’m on Kubernetes, but it’d be the same via Docker - a volume mount (iirc at the same place it stores local data if you don’t use S3, should be in the docs)

My instance has a couple users currently lol

Yes, I am significantly more active here than I was on Reddit (at least recently, my decline on posting/commenting on Reddit started a few years ago).

I use Cloudflare for TLDs they support, and Namecheap for everything else. Though, I use Cloudflare’s DNS services for all domains.

The other point is, how do you know which instances to go after to delete any content anyways? I think there is a way to see a list of federated servers, but there’s no way to know which has your data.

In theory you could send a takedown request to each of them, but that doesn’t seem helpful

I wonder if this is intentional on their part?

Reddit as a whole appears to be down right now lol

Yeah, I realized as I was typing it that it was probably going to be pretty random

Right, is that starting at like 12 EST or PST?

Ah, that’s based off the AMA he “did”. So nothing newer than that?