• 0 Posts
  • 22 Comments
Joined 1 year ago
cake
Cake day: June 12th, 2023

help-circle



  • I’ve selv-hosted this directly from my home IP - no problem!

    Of course it didn’t federate and was only open to friends and family behind an SSO portal so random visitors would never know - I’m not crazy. That would be like building a stage and send out invitations (in many ways as intended), but I used it as a warehouse and installed lockable doors!

    A lot of services people would think of as “internet sites” works great with self-hosting, it’s mainly just a matter of thinking things through. People that fuck up spectacularly and get on the news for openly hosting the hottest shit to like 500 million users just for the hell of it… Those are the type of people we hear about.

    We never hear about those who lay low and never get in trouble, regardless of the legality of the contents.



  • Hey, I advocate https even for LAN only, most people don’t think about the Wifi attack vector. That’s why I use self signed certs on my LAN stuff, I just don’t care about that yellow padlock that disappears when I trust the website. I’ve only experienced a single app ever that didn’t accept self-signed (I’m looking at you wallabag app).

    I can understand how it would be different if family members suddenly starts asking if it’s true when their devices tell them the webside is potentially dangerous.

    Yes, it’s dangerous to surveillance capitalism

    People… watching money?

    Forget it, I’ll set it up with a regular cert and external access



  • Will there be any issues running SSL certs if all of my internal service are inward facing, with no WAN access?

    If you’re using a third party CA, periodically renewing certificates in my experience. The authority needs to be able to connect to the device it’s issuing a cert to, for it to handle a security challenge iirc.

    If you set up your own CA, none that I know of.

    My main goal is to keep my home setup off of the internet.

    Then I don’t understand the need for neither domain names nor third party signed certs. Can’t you use PiHole as a configurable DNS server, just make any domain name go to any of your local devices?


  • How did Lemmy devs solve this?

    When the devs released an update that allowed Lemmy to communicate properly with Mastodon and Friendica, a lot of the echo-chamber effect disappeared. But the dominance of larger instances kept up, sure anybody could find a smaller instance or even spin up their own and be auto-featured on join-lemmy.org - But with practically everybody subscribing and posting to existing and established communities it was hard to challenge the monopoly and get a foot in the door.

    I’ve seen instances with hundreds of posts relegated to irrelevance, no upvotes, no comments. Because they weren’t able to get the word out so people could have a choice to subscribe. Because they were blocked from the big announcement forums.

    The only way to find them was to use the lemmy landing page and manually browse all instances to hunt down interesting subs. If I’m blocked from posting on the “new forums” section of lemmy.world, how would you ever know about my new forum? It would be dead in the water.

    Or did they even?

    Wider federation with Friendica/Mastodon++ was always planned. The reddit influx is by chance. I feel that the things that have changed the wider lemmy culture for the better have been by chance or as a by-product. Not by design.

    And that’s why I believed, and still belive, the Lemmyverse needed some externally driven changes. You have no idea the difference between now and 6-12 month ago. Being able to just post somewhere without being afraid of a misinterpreted comment could communaly block hundred of fellow instance users from a majority of the total lemmyverse content has been… Illuminating on the plights of people living in totalitarian states.






  • Lemmy is created by what many describes as “tankies”, fundamentalist communists. The lead devs are, in my impression generally supportive of the Chinese government. They run their own instances, dedicated to their own world view and interests. I don’t have the slightest problem with that.

    Hopefully due to a lack of foresight their instance was presented as a flagship instance on the official landing page and other places, effectively making it the representative for Lemmy for a long time. With their moderation practices, they in large parts drove away what I consider reasonable users regardless of personal ideology.

    This created an monolithic instance that dwarfed every single instance besides one; the other dev-run instance which seems like a containment instance for those too fundamentalist to stay on the “main” server. For a large part Lemmy was a downright nasty monoculture that would harass even lead developers for daring to interact with code-contributing users on instances deemed “problematic”.

    With a very generous blocking practice, these monolithic instance basically shut out anybody not agreeing with them from the majority of content - including non-political. This in turn gave other instances less of a reason reason to stay on the Lemmyverse which reinforced the monoculture.

    The devs did take steps to rectify this problem: they offered a year of free Lemmy hosting for anybody willing to admin a general purpose instance, recruited other general purpose instances to promote on join-lemmy.org. I respect that. But at that time it seemed too late to change the direction. When I realized the bad reputation Lemmy as a project had amongst some of the larger fediverse influencers, I realized that Lemmy would not be viable until it got a massive and sudden influx of new users to shake up the overall federated lemmy community. And now here we are!



  • Mastodon caches images from remote instances, Lemmy doesn’t. It links, which has it’s own issues (images disappearing from remote posts if the instance goes down). Everybody I’ve seen complaining about storage space have been open Lemmy instances with loads of users potentially uploading images to the pictrs sub-system. There’s even been requests to limit image storage for individual users.

    If you’re thinking of using the YunoHost version of Lemmy, be aware that the pictrs subsystem is removed due to technical issues, I would absolutely recommend using the ansible install. But that might defeat the purpose of easy self-hosting for most YunoHost users…

    From a non-technical aspect, the biggest issue (or at least used to be) on Lemmy was the ideological attacks and isolation by the fascist core community of any non-conforming instance. That had a chokehold on the lemmyverse to the point I saw no point running a Lemmy instance unless I self-censored my sometimes negative opinions of the Chinese government. Seeing the core developers being willing to hold back their own project was the biggest surprise when self-hosting Lemmy.