boulderly

joined 1 year ago
[–] boulderly@lemmyadmin.site 4 points 1 year ago

yep had to do that was initially getting "too many redirects."

[–] boulderly@lemmyadmin.site 5 points 1 year ago (1 children)

I've wondered the same and thought they might be new since my last visit?

[–] boulderly@lemmyadmin.site 14 points 1 year ago (2 children)

I put this site behind cloudflare in response to this post. Other than having to change SSL/TLS encryption mode to Full, it seemed easy. I turned on bot fight mode and I'm using the managed WAF ruleset that comes with the free tier. Any configuration recommendations anywhere in the panel?

[–] boulderly@lemmyadmin.site 3 points 1 year ago (2 children)

you both probably have 'show read posts' (or something similar) disabled under user settings.

[–] boulderly@lemmyadmin.site 2 points 1 year ago

btw - you can paste that link into search and it will return you a home instance link to click. So that's a decent work around for now. But I'm all for home instance link rewrites.

[–] boulderly@lemmyadmin.site 4 points 1 year ago

you know you can easily scale up and down instance sizes on aws, or move your instance to, say oracle. I've done both of these. The Ansible installer makes it very easy to move. you just down your containers and copy over the volumes directory for the move.

With these options you can start small and free. It may take a while to grow to 100 users. A 2 vcpu 2GB ram t4g.small on aws seems more than adequate and there's a free trial through the end of the year. It's arm64 though so small changes to the ansible lemmy.yml. The free tier t2.micro at 1 cpu 1 GB ram seemed too small.

Oracle has an always free arm64 image with 4 cpu and 24 GB ram plus a generous boot disk and 200GB block storage so you might as well start there. It will probably last quite a while. Maybe all the way through 100 users. The only thing is while I know it's very easy to change your instance type on AWS, I haven't looked into it on Oracle. But again moving your instance is very easy.

[–] boulderly@lemmyadmin.site 2 points 1 year ago

I agree and would support a feature request for lemmy-ui if not already in place for this one.

[–] boulderly@lemmyadmin.site 3 points 1 year ago* (last edited 1 year ago) (1 children)

you probably need to update config.hjson inside inventory/host_vars/<instance_name> ??

locally, in the lemmy-ansible/inventory... directory.

[–] boulderly@lemmyadmin.site 2 points 1 year ago (2 children)

I really do trust both of these projects and the community mindedness of their owners. Does someone know how you'd go about verifying a 3rd party image hasn't diverged from the official project image?

[–] boulderly@lemmyadmin.site 2 points 1 year ago* (last edited 1 year ago) (1 children)

hmm weird. This bot is announcing an 18.2 release (and I think people are installing it.) https://matrix.to/#/#lemmy-support-releases:discuss.online

But the repo is still showing 18.1 as the latest.

screenshot of releases widget on lemmy github

[–] boulderly@lemmyadmin.site 1 points 1 year ago (3 children)

Much appreciated! Looking for this morning's release with the vulnerability fix.

As you're doing it anyway, if whoever is in charge of these things were agreeable to it, would you be willing to do the official Arm images under https://hub.docker.com/r/dessalines/lemmy? One key advantage is the official ansible deployment method would work without modification for Arm deployments.

 

Could we add officially supported Arm containers?

Oracle has a pretty generous always free service with Arm; 4 Arm vcpu, 24Gb RAM: https://www.oracle.com/cloud/free/#always-free

AWS has a pretty good free trial to the end of the year: https://aws.amazon.com/ec2/instance-types/t4/

I think it's generally true that Arm is more efficient and better for the environment.

There are 3rd party Arm images available and I'm running instances with these on AWS and Oracle, but they are not updated as frequently as the official images: https://hub.docker.com/r/masquernya/lemmy/tags

I know if I'm asking I should be ready to help, and I am. But this isn't something I know how to do.

[–] boulderly@lemmyadmin.site 1 points 1 year ago

so consider a smaller local instance like I'm setting up. If it's ever anything more than me and my mom it's gonna be a bunch of people I know and their friends. And if my instance is their entry point to the fediverse then yeah I want it to be as private as we can make it for them.

But also, even if someone's IRL identity was masked, I've only been around a week and I'm starting to recognize handles on the fediverse. Ideally we make friends here and it's a community for us.

Now imagine how humiliating it would be if someone malicious gained control over an instance and published everyone's subscriptions/likes etc. Sure more savvy users probably do have separate accounts but honestly most will not.

 

Hi every lemmy. I've just stood up a couple new instances and I've been hanging out in the Admin chat over at https://matrix.to/#/#lemmy-support-general:discuss.online. Someone there asked if they could view subscriptions so I wrote and shared the sql query. (could I have done better on the joins with 2 joins to instance?)

sql query to all user subscriptions

And that's when I realized what an invasion of privacy that is. Maybe there's an easier way to do it but could we add optional support for user key pairs, so that if I associated a public key with my account, everything related to me in the db gets hashed with that key? Then I provide my private key at login?

I say optional because I know that's hard for a lot of folks. But maybe there's a way to make it easier with something like letsencrypt at sign up so it would be trivial for everyone to do it.. Or maybe there's a way to do it globally with a central key common to all instances, perhaps paired with instance specific keys?

I understand there's other aspects of user activity that would be best made private to so this could also work, say for votes or whatever else.

view more: next ›