overview for thepaperpilot

Wavemaker Novel Planning and Writing Software - One of the most impressive creative writing apps I've tried, and it's free! in c/foss

[–] thepaperpilot 10 points 10 months ago

I think they mean in the sense that it's not a native desktop app (or mobile)

Meta payment message in c/privacy@lemmy.ml

[–] thepaperpilot 19 points 10 months ago

The call to action button is the free plan, with subscribe having a secondary button style. That alone makes it clear they want to show you ads more than they want you to subscribe.

Omegle shuts down after 14 years in c/usnews

[–] thepaperpilot 3 points 10 months ago (1 children)

Considering the reasons for shutting down, specifically that it took too many resources to keep out bad actors and keep the site as safe as possible, I don't think making it open source is a good idea.

Beehaw Election Day 2023 in c/politics

[–] thepaperpilot 9 points 10 months ago

I'm in TX with a whole bunch of constituents amendments on the ballot. Never too optimistic about making a difference in such a conservative state, and particularly annoyed the only thing that could have a positive effect on our failing electric grid is a tax incentive for natural gas 🤮.

The only prop I'm still on the fence about is the university fund. I'm skeptical of state funding for universities, because my understanding is quite a bit of that goes to admin instead of lowering tuition. But most organizations seem to support the proposition, and the only ones who oppose it say they do so because the universities are too "woke". I don't want to vote in alignment with some alt right organizations :/

I need Rule in c/196@lemmy.blahaj.zone

[–] thepaperpilot 6 points 10 months ago

If you go to very leftist areas of the internet (socialist or communist areas, anywhere from anarchistic (bottom left) to authoritarian (top left)) you'll see people using liberalism by its political science definition, rather than the definition its taken on within American culture. It stems from the idea of capital moving freely (that is, liberally) without restrictions. You'll also see it referred to as neoliberalism in the same spaces.

Full disclosure, I myself am pretty extremely socially libertarian (arguably borderline anarchistic), and have used liberal derogatively myself.

Matrix vs. XMPP, Security, Privacy, Apps, Efficiency ? in c/privacy@lemmy.ml

[–] thepaperpilot 4 points 11 months ago (3 children)

I'm also still interested in the xmpp vs matrix debate. I'm using matrix ATM because it seems more actively developed and used, but I know some people still swear by xmpp. Ultimately I really just want a decentralized alternative to discord, but beyond that I feel like I'll just want to go to whichever alternative has the most users, since that's pretty useful for chatting software.

I've heard feedback that matrix doesn't seem to be very united, with different groups implementing different competing features proposals etc., which does seem to be a pretty big issue.

I'm also pretty optimistic about a lot of the new stuff being built on matrix. I recently became aware of Commune, which is about making sections of matrix servers web searchable, and that sounds incredible - one of my biggest issues with discord is how often it gets used as effectively game wikis, collecting all these guides and information that's only accessible through a proprietary discord account. No anonymous search.

the November 2023 Beehaw Financial Update in c/support

[–] thepaperpilot 23 points 11 months ago

All contributions being from monthly contributions is a very interesting note. They are what will allow you to reliably make long term decisions. Glad to see the monthly donations are still covering the expenses, and the runway is getting longer over time.

Meta given 30 days to cease using the name Threads by company that trademarked it 11 years ago in c/technology

[–] thepaperpilot 19 points 11 months ago (1 children)

The bit about "no" not meaning "no" means they're specifically implying meta employees can be sexually assaulted even if they say no. I'm sure it's said in jest, but it's still a fairly offensive comment.

How to de google or create a more private experience with pixel 8 in c/privacy@lemmy.ml

[–] thepaperpilot 1 points 11 months ago (1 children)

I'm not ready to really degoogle my phone, but wow next DNS has a lot of cool features! Thanks for the recommendation

*Permanently Deleted* in c/196@lemmy.blahaj.zone

[–] thepaperpilot 40 points 11 months ago (2 children)

I haven't gotten into vrchat personally, but I love that it's become well known as a good safe place for people to explore their gender identities

Lookin at you Blahaja Zone in c/memes@lemmy.ml

[–] thepaperpilot 20 points 11 months ago (1 children)

I'm not sure I agree with the take that blahaj.zone has a facism problem. They're explicitly anti-tankie and anti-nazi, which are the authoritarian end of the political spectrum. It's a very left leaning space, and I think anyone in the lower left quadrant, e.g. libertarianism to anarchism and socialism to communism, would be well received.

time for POSSE: post once, share everywhere in c/lemmy@lemmy.ml

[–] thepaperpilot 2 points 11 months ago

I'm not sure why you would need accounts on all those different platforms. Isn't the whole point of posse that you just post it once and then anyone, regardless of platform, can see it? That's what already happens (with the caveat that some, like lemmy, won't show you certain types of posts, like notes).

And people following you on one platform but not another sounds like more of a desire for multiple identities, each one a fragment of your actual identity. That's another concept, that stuff like socialhub try to implement.

2

[Question] Security when self hosting federated services (self.selfhost)

submitted 1 year ago by thepaperpilot to c/selfhost@lemmy.ml

0 comments fedilink

Howdy! I'm planning on setting up a home server once I get a final piece of hardware or two. I plan on hosting several services that are only intended for my immediate family, like home assistant, some services that I'd let friends and extended family use, like bitwarden, and some federated services - lemmy, calckey, and matrix. While those would likely be restricted to accounts only for friends and extended family, I'd naturally want them to federate so those accounts can see and participate with others.

I've never self hosted before, and am very concerned about making sure everything is secure. I do not want to allow someone to access my HA dashboard, for example. I'm planning on using docker to host all these services, with caddy-docker-proxy as the reverse proxy, and a cloudflared container to tunnel it all to the WWW (I already have a domain name purchased to use). But from there I'm not sure what to do - I don't want to solely rely on each service having no exploits that allow someone to get access to my private data or worse. I understand cloudflare has access control, which sounds like it could work and can be configured per sub-domain. So I could theoretically make the home assistant only available for me and my immediate family, get a longer list of whitelisted people for the other services, and no controls on the federated services.

I'm just concerned that this may not be enough, still. Since the federated services would be effectively broadcasting the domain name of my home server, I want to be really sure it's secure. Is this sufficient, and if not what other precautions would you take before exposing a federated service on a home server? I haven't been able to really find resources about this concern and how to handle it - it seems most people host their federated services on a VPS, but I don't want to be paying for that when I'm already planning on maintaining a home server.