plague-sapiens

Federated instances could be counted. Non-federated like govermental or company ones can’t. So yeah, I would say 3.

Bots, lots of bots xD

Your answer wasn’t rude at all :) and thanks for the long one! Looks like I should try FreeBSD again, last time I was just overwhelmed, but that’s many years ago. My last try was OPNsense which didn’t work like I wanted it to (stupid IPv6-to-IPv4 tunnel, which didn’t properly reconnect after the 24h ISP disconnection and my script to fix this fucked up latency and gaming wasn’t possible because of stutters (probably packet loss too)). Security is the main aspect of my try to use it. Linux can be like a swiss cheese if misconfigured. Still better than Windows (Server) tho xD

Yeah you’re right. Sandboxed gplay services can still be used to surveil clients, good thing you can use another profile with gplay services and install apps (which needs those) on there, meaning no potential leaks for apps that use their own push notification service and closed APIs (Google or Firebase). Good thread about it: https://discuss.grapheneos.org/d/9407-this-is-why-i-use-grapheneos

More open source hardware would be epic, but imo this trend will take years to grow if it even will succeed. Most people just don’t care about their privacy at all and with hw and sw being open, there’s less money to be earned because of easier plagiarism.

For a small pocket and low power consumption but incredible performance I would recommend the Odroid M1. Add a cheap nvme drive for the os (I prefer debian) and a 2,5" hdd. On top of debian you can install OMV for a webui based linux home server control. DietPi is nice for beginners too. And like other ppl already said, you can use docker/podman for running your software.

Oh and don’t forget the 3-2-1 backup rule. 3 Backups, 2 different media types (ssd, hdd, usb stick, cloud, …) and 1 offsite backup (cloud or hdd at your friend’s house).

Tried to help :P What’s your take on using freebsd instead of linux? More security?

Every app is sandboxed by default and has no permissions, which you can give them. Like StorageScope for accessing only certain files.

https://grapheneos.org/faq#notifications

That’s why everyone should use GrapheneOS. Sandboxed GooglePlay services can be used, if needed. I personally use 3 proprietary apps, one of them is WhatsApp Business (self-employed and for stupid dipshits that won’t use anything else…), which is more privacy-friendly than the personal client itself. Join the resistance! Use GrapheneOS :)

Good read about push notifications on GOS: https://discuss.grapheneos.org/d/9407-this-is-why-i-use-grapheneos

Like someone already mentioned, you can use dracut-ssh for rpm-based distros or dropbear-initramfs for deb-based distros. My idea would be to use debian as host and virtualize or dockerize the freebsd system/software part.

It’s huge for networking. VPN gateway (for accessing the VPN WAN over LAN) on the host is 20-40% faster than dockerized…

This could be the I/O overhead caused by docker while using NAT networking: https://stackoverflow.com/questions/21889053/what-is-the-runtime-performance-cost-of-a-docker-container#26149994

Whats your setup? Stuff dockerized? Looks like routing/iptables are set incorrectly (depending on your setup).

But my solution would be using a local DNS VPN like personalDNSfilter, exposing your services over the VPS to the net and connecting over https to them. For local access at home you can use split-brain-dns (hope thats the correct word [example.net = 8.8.8.8, at home it resolutes to 192.168.x.y]). With that you can just walk around and use every service with the best latency and bandwidth, without manually deactivating the VPN.

This. You can create two seperate networks for the nginx instance (I would recommend NPM (nginx proxy manager)) and use one each for connecting from the lemmy instances to the reverse proxy. Traefik is nice too, that was my first rp used for docker and it integrates quite nicely to the docker environment :)

Exactly the same in many parts of DE. In Bavaria we have cable (docsis 3+) from Vodafone and then there’s copper and fibre from Telekom (most other ISPs use their infrastructure). Depending on where you are in Germany, cables is provided by another company. There are some fibre companies too.

I’m currently moving from Nuremburg to a smaller town next to it. Currently I have 250/50Mbit/s and in the street I’m moving I can only utilize 100/40… Like wtf, 100m down the road there’s the citiy hall, they have fibre and it’s street to the next small city will get fibre next year. I won’t until idk years. C’mon I would pay a shitton to get synchronous 1 Gbit/s. I’m gonna test 5G there too and maybe for my high bandwidth stuff that’s an option. Still fucked up. It’s 2023 an we still live in the stoneage of the internet. Fuck our politicians…

Netcup is my favourite hoster in the EU, but I live in DE. 2€/m for 2c, 2/4gb ram, lots of traffic. They have coupons from time to time or xmas/easter/… deals. The whole front- and backend works like a charm too. Upload your own isos/qcow images, download backups, KVM is awesomely implemented too. Sadly they don’t take crypto and you need a call verification or id via mail for your first purchase (understandable as a german hoster), besides that just wonderful :)

Thanks for the tip. Haven’t used tailscale (or sth similar) yet. But I’ll take a look into it :)

Buy a cheap VPS, setup a Wireguard or OpenVPN server (wg-easy is quite nice). Then something like Nginx Proxy Manager or plain nginx and expose your services over that.

Edit: if you need help, hit me up, love sharing my knowledge

Why not use sth that is based on OpenWeather? Weather from FDroid comes to my mind. For Windows idk. You can find some Gnome Extensions for Gnome (Linux DE) which can use OpenWeather too.