Posts by stanford@social.arclight.pro
(DIR) Post #AWmzv0aWRskyLTvNgG by stanford@social.arclight.pro
2023-06-17T17:29:48Z
0 likes, 0 repeats
@GNUxeava If you find something let me know πβAlso looking for some alternatives.NextCloud is so bloated, and even if you remove all the useless stuff you don't want it still feels slow :(Seafile seems to be a bit better, but something didn't really make me like it. Not exactly sure what it is.
(DIR) Post #AWnB2im5f4RSuWDQZ6 by stanford@social.arclight.pro
2023-06-17T19:33:42Z
0 likes, 0 repeats
@Loyal Really cute :nkoAww:β
(DIR) Post #AWnRTBDK97HnuQambA by stanford@social.arclight.pro
2023-06-17T22:38:23Z
0 likes, 0 repeats
Straight people are a myth :ablobcatwink:β
(DIR) Post #AWnW87amuoEyMnLTG4 by stanford@social.arclight.pro
2023-06-17T23:30:29Z
0 likes, 0 repeats
@littlefox Hi 207880,I hope you are doing well :blobcat:βGreetings,200950
(DIR) Post #AWnWMRiGu5rQp9fzCy by stanford@social.arclight.pro
2023-06-17T23:33:10Z
0 likes, 0 repeats
@littlefox Srsly, I never really thought about using the ASN as a general identifier outside the BGP world.It seems to be a really cool idea :blobcat:β
(DIR) Post #AWoMhvZ8IpxB6kxxIm by stanford@social.arclight.pro
2023-06-18T09:19:46Z
0 likes, 0 repeats
@nano Free money isn't a thing anymore, and management wants to buy a 17th villa.So they need to find a way to make even more money :blobcatgooglytrash:β
(DIR) Post #AWoNbDsptoZVqYY5wG by stanford@social.arclight.pro
2023-06-18T09:29:40Z
0 likes, 0 repeats
Question:Is it really a good thing that everyone is now using Letsencrypt as their registry?It's a great project but it starts to feel like a security issue to me :blobcatthinkingglare:β#SSL #TLS #letsencrypt #Admin #Server
(DIR) Post #AWoO33uyXnqH30pAu0 by stanford@social.arclight.pro
2023-06-18T09:34:28Z
0 likes, 0 repeats
@itzzenxx Well, defederation is done by the admins for the users of the instance.If their users are happy to moderate their feed on their own, then why not? :blobcatshrug:β
(DIR) Post #AWoPip3EJDox3VA6OO by stanford@social.arclight.pro
2023-06-18T09:53:34Z
0 likes, 0 repeats
@danny Well, that's my point.Like 10 years ago, the main SSL marked was split across 30-40 different CAs. If one of them made a mistake and the browsers needed to revoke the trust of the root certificate, it would just affect a portion of the internet.But now, if something at letsencrypt is going wrong, and their root certificate needs to be revoked it would affect like 50-60% of the internet.Btw, I don't wanna push anyone to change their practice.Just wanna start some discussion to maybe learn something from it :blobcat:β
(DIR) Post #AWoVK90zXv9lSRjNZY by stanford@social.arclight.pro
2023-06-18T10:56:11Z
0 likes, 0 repeats
@robalex @danny Well, sure, there are other CAs out there, and users can switch to a different one.But in most cases, a manual intervention is needed; people need to inform them about the (limited) alternatives need to change the configuration and reobtain new certs. And then hope that the new CA isn't completely overloaded by all those new people who want new certificates.A scenario where the LE root certs need to be revoked will be in any case a huge mess and will cause a hell lot of outages for days if not weeks.It just feels wrong to have so much critical infrastructure of the Internet in one central organisation.
(DIR) Post #AWoa0vdHZphwDoIWAa by stanford@social.arclight.pro
2023-06-18T11:48:54Z
0 likes, 0 repeats
@kalich To be honest, the SSL market is really broken.On the free market, there seem to be ZeroSSL and Buypass. I never tried any of them.They both seem to have some limits? (Not entirely sure tho) On the paid market nearly all smaller CA struggled due to LE and then were bought by DigiCert.So, the whole consumer SSL marked is just Letsencrypt, DigiCert and Sectigo (comodo).(excluding some very small or niche providers which do gov stuff for example).
(DIR) Post #AWoaEfdlpeLEg34wDY by stanford@social.arclight.pro
2023-06-18T11:51:22Z
0 likes, 0 repeats
@kalich Ironic how LE made encryption more affordable by making them free but at the same time killed most of the competition, so the only way for smaller CAs to survive was by making their stuff more expensive and focus on some niche π
β
(DIR) Post #AWqWhvqsctB9qypODI by stanford@social.arclight.pro
2023-06-19T10:20:36Z
0 likes, 0 repeats
@Loyal :blobcateyes:β
(DIR) Post #AWqbGttIJDRpiut2h6 by stanford@social.arclight.pro
2023-06-19T11:11:51Z
0 likes, 0 repeats
@mjdxp Huh, what's your issue with mstdn.social?
(DIR) Post #AWqcLxzmZjFTr7tw5A by stanford@social.arclight.pro
2023-06-19T11:22:36Z
0 likes, 0 repeats
@experiencersinternational @mjdxp Yea, and what did he do?
(DIR) Post #AWqcpVNVXRAtmw5Elk by stanford@social.arclight.pro
2023-06-19T11:29:17Z
0 likes, 0 repeats
@experiencersinternational @mjdxp he didn't sign an NDA? Why should he do? O.oAlso blocking .art is nothing bad I guess.Their approach to defederation is kinda toxic in general.
(DIR) Post #AWsOK0PFdBG9iAu8kS by stanford@social.arclight.pro
2023-06-20T07:56:22Z
0 likes, 0 repeats
@aral What have the moderation team there have to do with it?Iirc the user reporting you can decide on thier own if the report should get forwarded to your instance.
(DIR) Post #AWse6nYjgPoNMx46Do by stanford@social.arclight.pro
2023-06-20T10:53:07Z
0 likes, 0 repeats
@jonatan Out of curiosity, why do people self-host S3 storage?If you can handle the storage and traffic, why add the extra S3 step? :nkoThink:β
(DIR) Post #AWsn0TEVF52sB6euOG by stanford@social.arclight.pro
2023-06-20T12:32:49Z
0 likes, 0 repeats
@Loyal :comfysnug1:β:comfysnug2:β
(DIR) Post #AWt7xmyFV0CJYwcQJE by stanford@social.arclight.pro
2023-06-20T16:27:53Z
0 likes, 0 repeats
@macja We needed something simpler because I was always loosing in Tetris :blobcatgooglytrash:β