If you are really looking for hassle-free this is it. LetsEncrypt root certificates are already trusted by most devices so when your friends come over and wanna control the media library or whatever you don’t need to install your locally hosted CA’s self-signed certificates on their phone.

Also certbot and a cron or systemd timer is all you need; people have rolled all these fancy solutions but I say keep it simple.

Subtle shade, I like it

VIVID VOID

Can’t wait for the thing I bought and own to suddenly cost $5 a month

Hehehehe yeah you put it on full blast in your buddy’s dorm when he’s down the hall in the bathroom

Now thats a fucken party

dnf users all wear Trilbies, call them Fedoras, and do not shave below the chin 😉

If someone runs an auth server, and I use it to identify me, and then it goes away, then I’m out of luck, my account is gone. This is the same problem we have now (with logins being tied to instances), except that it introduces a new place for a failure to occur. Rather than just relying on a lemmy instance, I also need to rely on an auth server to be maintained, safe, and secure.

If I went to another auth server, then it’d give me a different identity and that would not make much sense.

We can, passkeys are being adopted all over the web. If you specifically mean for Lemmy or fediverse services, it’s probably just a matter of adding support. It isn’t hard, per se, but it is important to get it right.

You can store passkeys in a password manager like BitWarden and they become portable. Then it doesn’t matter if you have a centralized authentication server. You just get logged in with your passkey, supplied by your password manager.

Congrats you just invented passkeys

So we should make a remote single point of failure, maintained by someone who probably isn’t a security expert or working on it full time?

No, this is unfortunately the opposite of what we should be doing.

EDIT: I should also add that people who make password managers literally focus on only that. They understand what they are making is a huge target and any of them worth their salt have independent audits and spend much of their time on design decisions related to security. Point being: typically the weakest link in a password manager is you. Set a good password, use a YubiKey or some other device, use 2FA, etc.

Nah mate, I don’t think I want to trust some rando identity server with my login, and self hosting just makes them easy targets.

It’s an interesting take though because a lot of good content requires funding too, as well as hosting etc.

So how can we solve that in a reasonable way that doesn’t lead to all the bullshit?

aMeRiCaNs tHiNk tHeY aRe tHe cEnTeR oF tHe uNiVeRsE

I’m going to start making snarky comments on every article I see about Germany or the UK or Australia that doesn’t specifically call out the country and continent that it’s on.

Just because you’re not American doesn’t mean you’re not loud and annoying.

I’m partial to AdGuardHome myself, but PiHole does the job well

I don’t get why people still doubt China on tech progress. “Hur dur they’re commies so they had to have faked it! There’s just no incentive for them to be smart and driven because America, number one btw, has all the money.”

Like yeah, the country we’ve exported nearly all of our tech and manufacturing to for 40 years definitely has no idea how anything works, guys. Keep doubting.

Why would anyone use containers without compose?

Especially people who are newer? It’s far easier.

This is the way to go. Way more flexible than hardware raid and getting better all the time.

In ZFS-speak, instead of RAID 10 you’ll be doing “mirrored vdevs”

Doesn’t Apple already call their zeroconf networking “Bonjour”? Is a single extra “r” going to keep their lawyers away?

Many selfhosters are also homelabbers