Skip to content
  • Hjem
  • Seneste
  • Etiketter
  • Populære
  • Verden
  • Bruger
  • Grupper
Temaer
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Kollaps
FARVEL BIG TECH
  1. Forside
  2. Ikke-kategoriseret
  3. I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward.

I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward.

Planlagt Fastgjort Låst Flyttet Ikke-kategoriseret
149 Indlæg 62 Posters 0 Visninger
  • Ældste til nyeste
  • Nyeste til ældste
  • Most Votes
Svar
  • Svar som emne
Login for at svare
Denne tråd er blevet slettet. Kun brugere med emne behandlings privilegier kan se den.
  • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

    @vfrmedia @ireneista @philcowans Worth distinguishing external bad actors causing a headache and internal service users for which a provider may be liable. The latter is, I think, the bigger concern and novel problem for most in this proposal.

    vfrmedia@social.tchncs.deV This user is from outside of this forum
    vfrmedia@social.tchncs.deV This user is from outside of this forum
    vfrmedia@social.tchncs.de
    wrote sidst redigeret af
    #36

    @mttaggart @ireneista @philcowans

    keeping out external threats is normal cybersecurity stuff and relatively easy to deal with (same as making sure your car or house door is locked and carrying out physical checks or using CCTV if required) - but internal users could be more of a proiblem. Particularly if you are providing "private/secure" services and someone wants to use them for something that is blatantly illegal in your country..

    ireneista@adhd.irenes.spaceI 1 Reply Last reply
    0
    • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

      @ithoughtisawa2 @brahms Absolutely, especially for individuals or families. When you need to guarantee reliability for a community, things do get more complicated if you're doing it right.

      ko@gotosocial.artK This user is from outside of this forum
      ko@gotosocial.artK This user is from outside of this forum
      ko@gotosocial.art
      wrote sidst redigeret af
      #37

      @mttaggart @ithoughtisawa2 @brahms someone who has a friend that converted my shitbox laptop into a server: can confirm shit is amazing, it gave me extra aura, i no longer have to worry that i cant pay the server bill on time and now i can say i have a lot of people in my house (they are in my laptop :3)

      1 Reply Last reply
      0
      • vfrmedia@social.tchncs.deV vfrmedia@social.tchncs.de

        @mttaggart @ireneista @philcowans

        keeping out external threats is normal cybersecurity stuff and relatively easy to deal with (same as making sure your car or house door is locked and carrying out physical checks or using CCTV if required) - but internal users could be more of a proiblem. Particularly if you are providing "private/secure" services and someone wants to use them for something that is blatantly illegal in your country..

        ireneista@adhd.irenes.spaceI This user is from outside of this forum
        ireneista@adhd.irenes.spaceI This user is from outside of this forum
        ireneista@adhd.irenes.space
        wrote sidst redigeret af
        #38

        @vfrmedia @mttaggart @philcowans the thing we always tell people to consider before creating a corporate entity

        which nobody ever wants to do at that stage, and it needs to be then, for all the most realistic mitigations ....

        is what will you do if the jurisdiction you operate in makes it illegal, five years from now, to be openly gay or trans?

        mttaggart@infosec.exchangeM 1 Reply Last reply
        0
        • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

          Not for nothing but I've written a very well-regarded guide on home labs if you want to get started.

          https://taggartinstitute.org/t/course-catalog/125/24

          aleksei@social.fakeplastictrees.eeA This user is from outside of this forum
          aleksei@social.fakeplastictrees.eeA This user is from outside of this forum
          aleksei@social.fakeplastictrees.ee
          wrote sidst redigeret af
          #39

          @mttaggart FYI "Go to Course" returns 404 for https://taggartinstitute.org/c/wireguard-from-scratch/42

          1 Reply Last reply
          0
          • vfrmedia@social.tchncs.deV vfrmedia@social.tchncs.de

            @mttaggart @ireneista @philcowans

            There's a similar discussion about this here and the issues involved (at least from a USA perspective)

            https://defcon.social/@thedarktangent/116823710775702749

            jt_rebelo@ciberlandia.ptJ This user is from outside of this forum
            jt_rebelo@ciberlandia.ptJ This user is from outside of this forum
            jt_rebelo@ciberlandia.pt
            wrote sidst redigeret af
            #40

            @vfrmedia @mttaggart came here to reference this, it's about the same in the EU.
            @ireneista @philcowans

            1 Reply Last reply
            0
            • ireneista@adhd.irenes.spaceI ireneista@adhd.irenes.space

              @vfrmedia @mttaggart @philcowans the thing we always tell people to consider before creating a corporate entity

              which nobody ever wants to do at that stage, and it needs to be then, for all the most realistic mitigations ....

              is what will you do if the jurisdiction you operate in makes it illegal, five years from now, to be openly gay or trans?

              mttaggart@infosec.exchangeM This user is from outside of this forum
              mttaggart@infosec.exchangeM This user is from outside of this forum
              mttaggart@infosec.exchange
              wrote sidst redigeret af
              #41

              @ireneista @vfrmedia @philcowans It's an important question, although I'd contend that, much like Mossad, there's no threat modeling against rapacious fascism—certainly not with legal means. Which is to say that yes, you are accepting the risk of targeting by a regime when you offer services, and members should understand that offering the service is no guarantee of safety from said regime.

              ireneista@adhd.irenes.spaceI 1 Reply Last reply
              0
              • ireneista@adhd.irenes.spaceI ireneista@adhd.irenes.space

                @mttaggart @vfrmedia @philcowans right and like, if you're trying to serve marginalized communities, that's inherently risky because people's existence is politicized and that's beyond their control

                and if you're not, what are you even doing

                philcowans@universeodon.comP This user is from outside of this forum
                philcowans@universeodon.comP This user is from outside of this forum
                philcowans@universeodon.com
                wrote sidst redigeret af
                #42

                @ireneista @mttaggart @vfrmedia - so I think my take on this is more community first, tech second. Like, if the output is basically a support network and a set of tools to help individuals and community organisations self host, then I think I'd be quite happy with that.

                Or maybe the solution is lower level services, e.g. shared server management with tools to make it easy for individual users to spin up their own Mastodon instance on their own domain.

                VPNs are possibly a bit of a special case, and maybe the DEFCON folks reached the right conclusion there when they decided just to support Tor.

                mttaggart@infosec.exchangeM philcowans@universeodon.comP ireneista@adhd.irenes.spaceI d1@autonomous.zoneD 4 Replies Last reply
                0
                • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                  @ireneista @vfrmedia @philcowans It's an important question, although I'd contend that, much like Mossad, there's no threat modeling against rapacious fascism—certainly not with legal means. Which is to say that yes, you are accepting the risk of targeting by a regime when you offer services, and members should understand that offering the service is no guarantee of safety from said regime.

                  ireneista@adhd.irenes.spaceI This user is from outside of this forum
                  ireneista@adhd.irenes.spaceI This user is from outside of this forum
                  ireneista@adhd.irenes.space
                  wrote sidst redigeret af
                  #43

                  @mttaggart @vfrmedia @philcowans so just to get a little more pointed about it

                  when that happens, if you're operating as a corporation there are only three options:

                  1. tell the marginalized people bye, can't help you
                  2. attempt to defend them on the legal front
                  3. shut down

                  corporations exist at the pleasure of the state. there is no fourth choice.

                  ireneista@adhd.irenes.spaceI nyanpasu64@donotsta.reN 2 Replies Last reply
                  0
                  • philcowans@universeodon.comP philcowans@universeodon.com

                    @ireneista @mttaggart @vfrmedia - so I think my take on this is more community first, tech second. Like, if the output is basically a support network and a set of tools to help individuals and community organisations self host, then I think I'd be quite happy with that.

                    Or maybe the solution is lower level services, e.g. shared server management with tools to make it easy for individual users to spin up their own Mastodon instance on their own domain.

                    VPNs are possibly a bit of a special case, and maybe the DEFCON folks reached the right conclusion there when they decided just to support Tor.

                    mttaggart@infosec.exchangeM This user is from outside of this forum
                    mttaggart@infosec.exchangeM This user is from outside of this forum
                    mttaggart@infosec.exchange
                    wrote sidst redigeret af
                    #44

                    @philcowans @ireneista @vfrmedia Yeah my thinking was more shared infra and the ability to spin up services for oneself. But I also agree that this is something akin to the size of old key-sharing parties. It doesn't scale—intentionally.

                    ireneista@adhd.irenes.spaceI 1 Reply Last reply
                    0
                    • ireneista@adhd.irenes.spaceI ireneista@adhd.irenes.space

                      @mttaggart @vfrmedia @philcowans so just to get a little more pointed about it

                      when that happens, if you're operating as a corporation there are only three options:

                      1. tell the marginalized people bye, can't help you
                      2. attempt to defend them on the legal front
                      3. shut down

                      corporations exist at the pleasure of the state. there is no fourth choice.

                      ireneista@adhd.irenes.spaceI This user is from outside of this forum
                      ireneista@adhd.irenes.spaceI This user is from outside of this forum
                      ireneista@adhd.irenes.space
                      wrote sidst redigeret af
                      #45

                      @mttaggart @vfrmedia @philcowans if your plan is (2), great. carry on, just make sure you have enough money.

                      also, as an activist we know what the funding landscape for that looks like right now and it's grim AF

                      1 Reply Last reply
                      0
                      • philcowans@universeodon.comP philcowans@universeodon.com

                        @ireneista @mttaggart @vfrmedia - so I think my take on this is more community first, tech second. Like, if the output is basically a support network and a set of tools to help individuals and community organisations self host, then I think I'd be quite happy with that.

                        Or maybe the solution is lower level services, e.g. shared server management with tools to make it easy for individual users to spin up their own Mastodon instance on their own domain.

                        VPNs are possibly a bit of a special case, and maybe the DEFCON folks reached the right conclusion there when they decided just to support Tor.

                        philcowans@universeodon.comP This user is from outside of this forum
                        philcowans@universeodon.comP This user is from outside of this forum
                        philcowans@universeodon.com
                        wrote sidst redigeret af
                        #46

                        @ireneista @mttaggart @vfrmedia - btw, there's this:

                        https://www.merri-bek.tech/

                        Which I think is the closest I've found. I also feel that https://toot.wales/ and https://join.cosocial.ca/ are somewhat similar in scope.

                        Tech-wise, there's https://coopcloud.tech/ - @coopcloud.

                        vfrmedia@social.tchncs.deV 1 Reply Last reply
                        0
                        • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                          I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                          lritter@mastodon.gamedev.placeL This user is from outside of this forum
                          lritter@mastodon.gamedev.placeL This user is from outside of this forum
                          lritter@mastodon.gamedev.place
                          wrote sidst redigeret af
                          #47

                          @mttaggart greedy bastards as far as the eye can see.

                          yeah your idea sounds like it would fit well into how things are already going. herd mentality is our doom.

                          1 Reply Last reply
                          0
                          • philcowans@universeodon.comP philcowans@universeodon.com

                            @ireneista @mttaggart @vfrmedia - so I think my take on this is more community first, tech second. Like, if the output is basically a support network and a set of tools to help individuals and community organisations self host, then I think I'd be quite happy with that.

                            Or maybe the solution is lower level services, e.g. shared server management with tools to make it easy for individual users to spin up their own Mastodon instance on their own domain.

                            VPNs are possibly a bit of a special case, and maybe the DEFCON folks reached the right conclusion there when they decided just to support Tor.

                            ireneista@adhd.irenes.spaceI This user is from outside of this forum
                            ireneista@adhd.irenes.spaceI This user is from outside of this forum
                            ireneista@adhd.irenes.space
                            wrote sidst redigeret af
                            #48

                            @philcowans @mttaggart @vfrmedia that's where we're at, as well

                            we went and read the linked thread, it does agree with our own conclusions both for generic infra and for VPNs

                            ireneista@adhd.irenes.spaceI 1 Reply Last reply
                            0
                            • ireneista@adhd.irenes.spaceI ireneista@adhd.irenes.space

                              @philcowans @mttaggart @vfrmedia that's where we're at, as well

                              we went and read the linked thread, it does agree with our own conclusions both for generic infra and for VPNs

                              ireneista@adhd.irenes.spaceI This user is from outside of this forum
                              ireneista@adhd.irenes.spaceI This user is from outside of this forum
                              ireneista@adhd.irenes.space
                              wrote sidst redigeret af
                              #49

                              @philcowans @mttaggart @vfrmedia but yes, your goals around community seem like the right ones to us, we just don't know how to do useful things with that

                              1 Reply Last reply
                              0
                              • philcowans@universeodon.comP philcowans@universeodon.com

                                @ireneista @mttaggart @vfrmedia - btw, there's this:

                                https://www.merri-bek.tech/

                                Which I think is the closest I've found. I also feel that https://toot.wales/ and https://join.cosocial.ca/ are somewhat similar in scope.

                                Tech-wise, there's https://coopcloud.tech/ - @coopcloud.

                                vfrmedia@social.tchncs.deV This user is from outside of this forum
                                vfrmedia@social.tchncs.deV This user is from outside of this forum
                                vfrmedia@social.tchncs.de
                                wrote sidst redigeret af
                                #50

                                @philcowans @ireneista @mttaggart @coopcloud

                                things like that are definitely feasible, provided you set expectations to all users they aren't going to protect you from the NCA, so don't do anything on those networks that would attract them! (to be fair not /that/ difficult to do if folk are sensible)

                                1 Reply Last reply
                                0
                                • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                  @philcowans @ireneista @vfrmedia Yeah my thinking was more shared infra and the ability to spin up services for oneself. But I also agree that this is something akin to the size of old key-sharing parties. It doesn't scale—intentionally.

                                  ireneista@adhd.irenes.spaceI This user is from outside of this forum
                                  ireneista@adhd.irenes.spaceI This user is from outside of this forum
                                  ireneista@adhd.irenes.space
                                  wrote sidst redigeret af
                                  #51

                                  @mttaggart @philcowans @vfrmedia it's not scale that we're concerned about. scale is not the blocker we are identifying.

                                  mttaggart@infosec.exchangeM 1 Reply Last reply
                                  0
                                  • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                    I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                                    drwho@masto.hackers.townD This user is from outside of this forum
                                    drwho@masto.hackers.townD This user is from outside of this forum
                                    drwho@masto.hackers.town
                                    wrote sidst redigeret af
                                    #52

                                    @mttaggart Agreed.

                                    1 Reply Last reply
                                    0
                                    • mttaggart@infosec.exchangeM mttaggart@infosec.exchange

                                      I'm coming to the conclusion that community-owned and operated small clouds (co-ops) with easy onramps for self-hosting open source services like mail, storage, and VPN are the only way forward. Every corpo service is eventually going to make you ashamed to use it.

                                      falk_@chaos.socialF This user is from outside of this forum
                                      falk_@chaos.socialF This user is from outside of this forum
                                      falk_@chaos.social
                                      wrote sidst redigeret af
                                      #53

                                      @mttaggart I‘ve been pondering hosting coops as well, but there’s always the bus factor and what members want to spend money-wise for other people hosting their stuff.

                                      You‘d have to pay rent for a datacenter, a bunch of used servers and some volunteers / part-time employees that take care of sysadmin things.

                                      „trust other people’s homelab“ is not something I‘d do personally. People‘s lives change, and they might not be able to support this indefinitely.

                                      mttaggart@infosec.exchangeM 1 Reply Last reply
                                      0
                                      • mttaggart@infosec.exchangeM This user is from outside of this forum
                                        mttaggart@infosec.exchangeM This user is from outside of this forum
                                        mttaggart@infosec.exchange
                                        wrote sidst redigeret af
                                        #54

                                        @decay That's why you need literal buy-in, yep.

                                        1 Reply Last reply
                                        0
                                        • falk_@chaos.socialF falk_@chaos.social

                                          @mttaggart I‘ve been pondering hosting coops as well, but there’s always the bus factor and what members want to spend money-wise for other people hosting their stuff.

                                          You‘d have to pay rent for a datacenter, a bunch of used servers and some volunteers / part-time employees that take care of sysadmin things.

                                          „trust other people’s homelab“ is not something I‘d do personally. People‘s lives change, and they might not be able to support this indefinitely.

                                          mttaggart@infosec.exchangeM This user is from outside of this forum
                                          mttaggart@infosec.exchangeM This user is from outside of this forum
                                          mttaggart@infosec.exchange
                                          wrote sidst redigeret af
                                          #55

                                          @falk_ That's true, but indefinite support may be an unreasonable expectation. A reasonable expectation may be an exit agreement.

                                          falk_@chaos.socialF wolf480pl@mstdn.ioW 2 Replies Last reply
                                          0
                                          Svar
                                          • Svar som emne
                                          Login for at svare
                                          • Ældste til nyeste
                                          • Nyeste til ældste
                                          • Most Votes


                                          • Log ind

                                          • Har du ikke en konto? Tilmeld

                                          • Login or register to search.
                                          Powered by NodeBB Contributors
                                          Graciously hosted by data.coop
                                          • First post
                                            Last post
                                          0
                                          • Hjem
                                          • Seneste
                                          • Etiketter
                                          • Populære
                                          • Verden
                                          • Bruger
                                          • Grupper