I’d rent one (small) VPS for $10 a month and split the bill. As far as I know that’s how most people do it. It’s going to have >99.6% uptime, a fast datacenter internet connection at some central location and runs on enterprise hardware… The Kubernetes approach adds a lot of complexity, you’ll have your games disconnect anyway once it fails over as you can’t migrate the IP addresses. And there will be some additional traffic between the locations to keep everything in sync. And 4x chance of some of the hardware failing and someone needs to fix it. Unless I’m mistaken about how Kubernetes works.

Seems some people here advocate for a VPS, and I do it as well. I pay roughly 7€ a month for a small(ish) server with 4 cpu cores, 8GB of RAM and 256 GB of storage. That allows me to host a few services there, for example some websites and matrix chat, which I don’t want to go down if there’s an issue at home. And it allows me to do reverse proxying there, so I have the entire chain under my control. But there’s many ways to do it, and several other tunneling solutions (boringproxy.io, nohost.me, pagekite, ngrok, …) that I heard of.

And a lot of home internet connections allow port-forwarding. Not sure what your provider does, but I can simply open ports in my router and make them accessible from the outside, no VPS or Cloudflare needed. That’d be the direct solution. (And what I use for my personal services on my NAS.) Just mind that discloses your internet connection’s IP address to visitors, so they’ll learn the name of your provider and your rough location.

I’m fairly sure what you mean is, traffic is decrypted in the middle and the re-encrypted before it gets sent your way. Otherwise they couldn’t do proxying or threat detection/mitigation.

Cloudflare is very popular, there should be plenty people around with experience. And Cloudflare is convenient and fairly easy to use. I wouldn’t call them “secure” though. I mean that depends on your definition of the word… But they terminate the encryption for you and handle certificates, so it’s practically a man-in-the-middle, as they process your data transfers in cleartext. But as far as I know their track-record is fine. I have some ethical issues because they centralize the internet and some of their stuff borders on snake-oil… But it’s a common solution if you can’t open ports in your home internet connection, need some caching in front of your services, something to block AI scrapers, or you need a web application firewall as a service.

Guess they’d have to click on it first.

Wtf? I hope my commandline version of PlatformIO doesn’t do annoying things like that.

Well, diversity is the central idea behind the entire Fediverse… We get many different perspectives on the same content. That includes many individual instances and individual software. The opposite of that would be no diversity. One platform and one software, like Reddit or Facebook or most big commercial services. And we have projects in between, both federated and non-federated, even crypto-based, which combine many aspects into one platform.

Yes, I rarely see this being discussed. Cloudflare terminates the encryption, hopefully re-encrypts it on the way upstream, but they have access to all the content in the forwarded traffic. Not sure about the password managers, though. I believe most of them encrypt stuff on the device itself before sending it over the network, and there are no cleartext passwords transferred or stored on the servers.

Sure, email is bad and we don’t have any worthy successor. I can only deal with the most problematic aspects. Keep my inbox stored somewhere where people can’t just easily go through all my stored mails and I guess it’s transport encrypted more often than it’s not… But yeah, it’s only a little bit and “secure” shouldn’t be in one sentence with email, I guess 😟

Thanks for your insight. Reading these stories always makes me feel data should stay on own premises with extra security measures. And yes, on my VPS, imaging the storage is one click and I believe it’s done online without any interruption of service. Not that I do a lot of illegal stuff on the internet. But with the current situation in the US and the general overboarding surveillance, I think i’d like to keep their government and agencies out of my emails and personal stuff… (And maybe even what I do publicly and within legal limits.)

Though I didn’t ask about privacy here, but anonymity. And I guess selfhosting stuff at home isn’t an option either. Everyone can tell my ISP and location to like 30km with that. And link the IP to other activities.

Edit: I found their Transparency Report: https://www.cloudflare.com/transparency/

Though, I don’t know whether those numbers are high or low, considering the large amount of customers they have and the crazy amount of internet traffic they do.

Lol. But indeed nice of the Youtubers to put it to the test and also be honest with the results.

Oh, hey! I suppose technically you’re on MBin? But yeah, now that I’m aware… I regularly see kbin.earth pop up somewhere.

Btw, this is a very old article. PieFed is lightyears ahead from where it was one and a half years ago. KBin ceased to exist. And I didn’t follow Lemmy’s development so I can make any statement there.

I believe cycling and constantly discharging and charging a battery might be even worse than letting the built-in charge controller do its job and keep the charge. I’m not an expert on battery chemistry, though. All I can say, I’ve seen desktop replacements plugged in all the time and the battery at 100% and they go bad. Thinkpads and other laptops have configurable thresholds for quite some time now. And despite me using that for my last 2 laptops, the batteries still go bad eventually. It’s supposed to help, and batteries got better, but it’s a thing to factor in.

Yes, but there’s 2 sides to that story. It’s a free UPS and that’s really nice. But then I’ve seen old batteries degrade and swell. People call it the spicy pillow syndrome. And with two of my older devices, batteries got recalled by the manufacturer. So I’d advise against running these things 24/7 unattended. Either know what you’re doing or rip it out before it burns down the building. As a minimum that includes a location made of concrete or bricks and mortar and no burnable stuff in the vicinity. And regular checks on the state of the battery, maybe both visual inspections and whatever the mainboard reports.

I personally would advise against gsuite and office356 as well as it’s currently debated whether they can be used in accordance to the GDPR. That’s not stopping institutions and organizations… Both are very popular products, but I’d be cautious and not put any sensitive stuff or personal stuff or pictures there. And not hand out logins to other people, especially not minors.

I don’t think the BSA compare to the major German scouting associations. Different organization structure and substantially different ideology and activities. Also none of the big controversies surrounding the BSA. But I suppose idiots are everywhere, at least that’s my general life experience 😅 It is very unfortunate once they start to ruin things.

Idk. Really depends on what you put there. And Nextcloud does file sync. Even if the server becomes unavailable, you’d still have your directories and calendar on your devices. Just collaborating and uploading stuff won’t work.

And creativity and problem-solving are core scout skills, so I guess bulding that thing for no money would be an interesting exercise in that. Though you’re right. At some point you’ll have to think about maintainability and reliability. I guess that wouldn’t stop me from starting the project, but everyone has to decide for themselves.

(And yes, a proper VPS would be a preferrable solution for a multitude of reasons.)

Asking for a discount is a great idea. Some companies do this. And in rare occurences the boss is an old boy scout themselves and they’ll give you a 100% discount on some smaller things…