Skip to content
  • Hjem
  • Seneste
  • Etiketter
  • Populære
  • Verden
  • Bruger
  • Grupper
Temaer
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Kollaps
FARVEL BIG TECH
  1. Forside
  2. Ikke-kategoriseret
  3. I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward.

I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward.

Planlagt Fastgjort Låst Flyttet Ikke-kategoriseret
149 Indlæg 62 Posters 0 Visninger
  • Ældste til nyeste
  • Nyeste til ældste
  • Most Votes
Svar
  • Svar som emne
Login for at svare
Denne tråd er blevet slettet. Kun brugere med emne behandlings privilegier kan se den.
  • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

    I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

    delta_vee@cosocial.caD This user is from outside of this forum
    delta_vee@cosocial.caD This user is from outside of this forum
    delta_vee@cosocial.ca
    wrote sidst redigeret af
    #56

    @mttaggart I would love to see more of that, but there's a minimum size in practical terms, I think -- you have to be able to offer the equivalent of multiple AWS AZs, multiple long-term-stable exclusive IPv4 addresses, a properly HA DNS stack, etc

    mttaggart@infosec.exchangeM 1 Reply Last reply
    0
    • delta_vee@cosocial.caD delta_vee@cosocial.ca

      @mttaggart I would love to see more of that, but there's a minimum size in practical terms, I think -- you have to be able to offer the equivalent of multiple AWS AZs, multiple long-term-stable exclusive IPv4 addresses, a properly HA DNS stack, etc

      mttaggart@infosec.exchangeM This user is from outside of this forum
      mttaggart@infosec.exchangeM This user is from outside of this forum
      mttaggart@infosec.exchange
      wrote sidst redigeret af
      #57

      @delta_vee I don't think that's correct at all. You can be much smaller than that, at least to start.

      delta_vee@cosocial.caD 1 Reply Last reply
      0
      • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

        I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

        khleedril@cyberplace.socialK This user is from outside of this forum
        khleedril@cyberplace.socialK This user is from outside of this forum
        khleedril@cyberplace.social
        wrote sidst redigeret af
        #58

        @mttaggart I think it would have to follow the pirate radio model: anchor a ship in international waters, tap into subsea cables, 'adopt' some IP addresses, provide a top-level DNS server, ...

        drwho@masto.hackers.townD 1 Reply Last reply
        0
        • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

          I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

          jumpingjackrussell@mstdn.socialJ This user is from outside of this forum
          jumpingjackrussell@mstdn.socialJ This user is from outside of this forum
          jumpingjackrussell@mstdn.social
          wrote sidst redigeret af
          #59

          @mttaggart

          But then there’s the small problem of the global means of transmission (satcoms and telecoms).

          Need redundant, independent amateur radio-like terrestrial data repeater stations.

          mttaggart@infosec.exchangeM 1 Reply Last reply
          0
          • ithoughtisawa2@infosec.exchangeI ithoughtisawa2@infosec.exchange

            @brahms @mttaggart you can do more than you think with old desktop hardware and 16 gigs of DDR4 RAM. It is also much more energy efficient than server hardware (and much quieter too)

            dbrand666@mastodon.socialD This user is from outside of this forum
            dbrand666@mastodon.socialD This user is from outside of this forum
            dbrand666@mastodon.social
            wrote sidst redigeret af
            #60

            @ithoughtisawa2
            An old desktop is a great place to start but if you're buying, don't rule out old servers. They're much better at thermal management very important if you're gonna stuff a few drives into it.

            They're surprisingly power efficient. And many of them are whisper quiet with the right config.

            I'm running an old Dell T430 and all I hear is the hard drives. It's pulling about 70w with 6 hard drives in it (plus an SSD).

            No GPU though.
            @brahms @mttaggart

            1 Reply Last reply
            0
            • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

              I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

              philip@social.simplexity.questP This user is from outside of this forum
              philip@social.simplexity.questP This user is from outside of this forum
              philip@social.simplexity.quest
              wrote sidst redigeret af
              #61

              @mttaggart any examples?

              1 Reply Last reply
              0
              • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                rlonstein@social.stonetools.techR This user is from outside of this forum
                rlonstein@social.stonetools.techR This user is from outside of this forum
                rlonstein@social.stonetools.tech
                wrote sidst redigeret af
                #62

                @mttaggart A throwback to the 1990's/early 00's when you'd share a box running FreeBSD or Solaris colo-ed where we knew somebody and kick in what amounted to beer money.

                drwho@masto.hackers.townD 1 Reply Last reply
                0
                • jumpingjackrussell@mstdn.socialJ jumpingjackrussell@mstdn.social

                  @mttaggart

                  But then there’s the small problem of the global means of transmission (satcoms and telecoms).

                  Need redundant, independent amateur radio-like terrestrial data repeater stations.

                  mttaggart@infosec.exchangeM This user is from outside of this forum
                  mttaggart@infosec.exchangeM This user is from outside of this forum
                  mttaggart@infosec.exchange
                  wrote sidst redigeret af
                  #63

                  @jumpingjackrussell Don't try to solve every problem at once.

                  drwho@masto.hackers.townD 1 Reply Last reply
                  0
                  • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                    @falk_ That's true, but indefinite support may be an unreasonable expectation. A reasonable expectation may be an exit agreement.

                    falk_@chaos.socialF This user is from outside of this forum
                    falk_@chaos.socialF This user is from outside of this forum
                    falk_@chaos.social
                    wrote sidst redigeret af
                    #64

                    @mttaggart Yes, you need some easy migration for the not so technically inclined. Because those are the ones that would use those services.

                    And you‘d need to standardize on absent of services to make migration viable. And of course you have to be at least as good as the „free“ services, so that a large number of people would use those services.

                    I‘m all for self-hosting but not everyone has the time or ability to run their own services. Just running your own mail service is complex enough.

                    1 Reply Last reply
                    0
                    • vfrmedia@social.tchncs.deV vfrmedia@social.tchncs.de

                      @philcowans @mttaggart @ireneista

                      I think the dilemma is accountability/liability - what happens when one of your users does something that results in cops/feds demanding user data (or even seizing an entire server?)

                      Here in England it seems possible to get nicked for harmless protests and now there's the paranoia about "keeping kids safe"

                      How many people with a good career and salary in tech are going to risk it for the sake of someone /elses/ freedom, if they aren't making money from the venture?

                      This could maybe limit involvement to folk who are retired with good savings and less to lose (its already happening with the demographics of protesters)

                      (that goes for all the current VPN and hosting companies too and is their Achilles Heel).

                      onepict@chaos.socialO This user is from outside of this forum
                      onepict@chaos.socialO This user is from outside of this forum
                      onepict@chaos.social
                      wrote sidst redigeret af
                      #65

                      @vfrmedia @philcowans @mttaggart @ireneista Yeah there's UK #indymedia folks who remember the time the police seized their server.

                      https://wiki.indymedia.org.uk/wiki/Bristol_IMC_Court_Order

                      vfrmedia@social.tchncs.deV 1 Reply Last reply
                      0
                      • ireneista@adhd.irenes.spaceI ireneista@adhd.irenes.space

                        @mttaggart @vfrmedia @philcowans so just to get a little more pointed about it

                        when that happens, if you're operating as a corporation there are only three options:

                        1. tell the marginalized people bye, can't help you
                        2. attempt to defend them on the legal front
                        3. shut down

                        corporations exist at the pleasure of the state. there is no fourth choice.

                        nyanpasu64@donotsta.reN This user is from outside of this forum
                        nyanpasu64@donotsta.reN This user is from outside of this forum
                        nyanpasu64@donotsta.re
                        wrote sidst redigeret af
                        #66
                        @ireneista @mttaggart @vfrmedia @philcowans not an expert but my thought is that "community hosting" (my thoughts are the neocities codeberg git.gay space) would need to coordinate with bulletproof hardened shit, and spaces subject to legal/copyright takedowns (bypass paywall extension on Russian git hosting, self-hosted Switch emulator forks) are an example of this spectrum

                        i did feel a lot of Nintendo fan projects were developed too openly with not enough opsec and bulletproof hosting, like they had no plans to keep Nintendo from finding the project, sending the C&D like countless times before, and finding their home address

                        i did wonder how homebrew estrogen managed to be hosted on the clearnet for so long

                        it *is* sad how most of the game piracy and libgen/scihub mirrors are scammy or CAPTCHA hell
                        1 Reply Last reply
                        0
                        • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                          @delta_vee I don't think that's correct at all. You can be much smaller than that, at least to start.

                          delta_vee@cosocial.caD This user is from outside of this forum
                          delta_vee@cosocial.caD This user is from outside of this forum
                          delta_vee@cosocial.ca
                          wrote sidst redigeret af
                          #67

                          @mttaggart I think email especially, without that level of resiliency, is basically malpractice

                          wolf480pl@mstdn.ioW drwho@masto.hackers.townD 2 Replies Last reply
                          0
                          • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                            I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                            ww@xyzzy.linkW This user is from outside of this forum
                            ww@xyzzy.linkW This user is from outside of this forum
                            ww@xyzzy.link
                            wrote sidst redigeret af
                            #68
                            @mttaggart with vpn specifically, the problem is that half the point of a vpn is that many people share the same set of IPs. also managing ip reputation is hard, and you can't really use datacenter IPs for everyday browsing..
                            1 Reply Last reply
                            0
                            • onepict@chaos.socialO onepict@chaos.social

                              @vfrmedia @philcowans @mttaggart @ireneista Yeah there's UK #indymedia folks who remember the time the police seized their server.

                              https://wiki.indymedia.org.uk/wiki/Bristol_IMC_Court_Order

                              vfrmedia@social.tchncs.deV This user is from outside of this forum
                              vfrmedia@social.tchncs.deV This user is from outside of this forum
                              vfrmedia@social.tchncs.de
                              wrote sidst redigeret af
                              #69

                              @onepict @philcowans @mttaggart @ireneista

                              I remember that happening- and also that Indymedia (albeit not unlike many other independent websites of the era with user commenting/forums) was notoriously slow and reluctant with moderating in the interests of "free speech", which allowed bad actors to flood the spaces and turn them into hostile environments (where you could never really trust anybody)

                              OTOH I think something like community hosting for a local eco-gardening project or support groups for young people, LGBT+ etc *could* work, but as it wouldn't be able to provide much more legal protection than using MS365 or IONOS would at least have to be less pricey *and* provide the same (or better) level of customer service (especially if its supporting any kind of online commerce)

                              1 Reply Last reply
                              0
                              • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                                tuban_muzuru@beige.partyT This user is from outside of this forum
                                tuban_muzuru@beige.partyT This user is from outside of this forum
                                tuban_muzuru@beige.party
                                wrote sidst redigeret af
                                #70

                                @mttaggart

                                I keep telling people to get a pair of YubiKeys ( or equivalent ) and just get right with the future.

                                Proof of presence

                                1 Reply Last reply
                                0
                                • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                  I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                                  t2r@infosec.exchangeT This user is from outside of this forum
                                  t2r@infosec.exchangeT This user is from outside of this forum
                                  t2r@infosec.exchange
                                  wrote sidst redigeret af
                                  #71

                                  @mttaggart I'm against the idea of hosting some one else's stuff. I'd prefer to just host my own. BUT... Doing that and making it safe, resilient and dummy proof is difficult. Knowing your customer is also impossible because you may uncover someone's illegal hobby now hosted on your tech. I think we are better off making a system that is stupid proof to set up, self patching, and offers the user a way to back up their data.

                                  mttaggart@infosec.exchangeM 1 Reply Last reply
                                  0
                                  • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                    A fair number of the open source ones too, but at least money isn't changing hands.

                                    mttaggart@infosec.exchangeM This user is from outside of this forum
                                    mttaggart@infosec.exchangeM This user is from outside of this forum
                                    mttaggart@infosec.exchange
                                    wrote sidst redigeret af
                                    #72

                                    I guess I need to clarify that this model does not solve every ill of the current state of technology in society. It is an exit from reliance on corporate services that don't align with one's principles. What you're willing to pay for that is a decision for each community to make.

                                    mttaggart@infosec.exchangeM 1 Reply Last reply
                                    0
                                    • t2r@infosec.exchangeT t2r@infosec.exchange

                                      @mttaggart I'm against the idea of hosting some one else's stuff. I'd prefer to just host my own. BUT... Doing that and making it safe, resilient and dummy proof is difficult. Knowing your customer is also impossible because you may uncover someone's illegal hobby now hosted on your tech. I think we are better off making a system that is stupid proof to set up, self patching, and offers the user a way to back up their data.

                                      mttaggart@infosec.exchangeM This user is from outside of this forum
                                      mttaggart@infosec.exchangeM This user is from outside of this forum
                                      mttaggart@infosec.exchange
                                      wrote sidst redigeret af
                                      #73

                                      @T2R That sounds pretty good as well, although I suspect some level of community support makes that a lot smoother.

                                      t2r@infosec.exchangeT 1 Reply Last reply
                                      0
                                      • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                        @T2R That sounds pretty good as well, although I suspect some level of community support makes that a lot smoother.

                                        t2r@infosec.exchangeT This user is from outside of this forum
                                        t2r@infosec.exchangeT This user is from outside of this forum
                                        t2r@infosec.exchange
                                        wrote sidst redigeret af
                                        #74

                                        @mttaggart right but only as supporters and maintainers. Not hosts. Probably some sort of containerized system. That way it can run on NAS devices or full on servers.

                                        1 Reply Last reply
                                        0
                                        • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                          I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                                          shaulaevans@zirk.usS This user is from outside of this forum
                                          shaulaevans@zirk.usS This user is from outside of this forum
                                          shaulaevans@zirk.us
                                          wrote sidst redigeret af
                                          #75

                                          @mttaggart I don't know if you've seen this thread but it discusses some of the challenges involved, you might find it helpful.

                                          https://defcon.social/@thedarktangent/116823710775702749

                                          mttaggart@infosec.exchangeM 1 Reply Last reply
                                          0
                                          Svar
                                          • Svar som emne
                                          Login for at svare
                                          • Ældste til nyeste
                                          • Nyeste til ældste
                                          • Most Votes


                                          • Log ind

                                          • Har du ikke en konto? Tilmeld

                                          • Login or register to search.
                                          Powered by NodeBB Contributors
                                          Graciously hosted by data.coop
                                          • First post
                                            Last post
                                          0
                                          • Hjem
                                          • Seneste
                                          • Etiketter
                                          • Populære
                                          • Verden
                                          • Bruger
                                          • Grupper