Another option if you need public access without something like tailscale would be to use ddns and a AAAA record. Something like https://github.com/ddclient/ddclient would help do that.

That way if the IP changes, you’d pick up on the change for your vanity url within a few minutes… and can get https certs for that url as well.

Edit: I reread the OP. This doesn’t help if clients need direct ipv4. Sorry about that.

Bad eh security advice: use an alternative ssh port. Lots of actors try port 22 and other common alternatives. Much fewer will do a full port scan looking for an ssh server then try brute forcing.

I have both but just use pihole as a local DNS server/forwarder. I bump into too many random times where sites or redirects don’t work properly since they get blocked.

Consider using containers. I used to think this way, though now my goal is to get down to almost all containers since it’s nice to be able to spin up and down just what the one ‘thing’ needs.

If this is your fear, why not just have a will or something that specifically describes what to do and where to go?

How is signal considered part of the fediverse?

How does a doddle compare to a jiffie?

Recommend cloudflare for DNS. I use it for DDNS via API and it works great.

You also basically pay the wholesale rate without markup for the domain.

+1 to NPM. Works really easily for certs and auto renewal.

Exactly the same boat. But man Cloudflare is better in every way. Having an API to update/fetch records for a zone does wonders.

deleted by creator

Interesting side note: if discord was e2e encrypted, how should they take action on anything?

If a group decides to swat a server and they can’t review themselves, how should admin moderation work?

(Yes this isn’t the current situation, but I’m on the toilet and it intrigued me)

Even if you defederate they can harvest the data… I mean it’s an open protocol.

LinkedIn has over a billion users. I got a t-shirt for it.

In theory you could generate a wildcard to a domain then use it.

This whole comment is ridiculous. People are happy to pay for a better experience (for them). You can do/say whatever you want. So can I. So can he. Things in the world aren’t free. There is a continual narrative that everything should be FOSS. In a perfect world: sure. In our world we need money to live.

I’m happy to pay for the ad free version of sync. And happy that the profits go to the app maker to do whatever he wants.

Making up fractions like 1/3 is useless and arbitrary at best. You have no idea how much he makes or even what 1/3 would mean.

Edit: If instances block these apps, it defeats the purpose of an open fediverse. … also sounds just like reddit.

Self hosted. Though hey someone may wind up here via all and scroll and wonder what else there is.

If you have Prime and aren’t insisting on self hosting: Amazon Photos gives you unlimited full quality photo backups.

Terrible idea of the day: You could use something like NFS and map the drive on all clients. On that drive you can have the latest keys then use symlinking to update, etc.

Something like puppet, chef, ansible are likely better choices.

I’ll put a recommendation out for if you’re going to open ports: use abnormal ports. Someone is likely to try to hit your port 22 for ssh, but not your port 49231.

Edit: It’s definitely some security by obscurity. Still use a strong password or keys.