this post was submitted on 22 Jun 2023
19 points (100.0% liked)
Technology
37746 readers
221 users here now
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
So require paid ssl certificates or something. I just can’t sign on to any system that requires me to establish personal friendships with other instance admins so I can beg them for endorsements. Begging Reddit to improve accessibility didn’t work. I have no interest in a system where my instance now needs to beg other admins for the right to federate. Even email doesn’t work this way.
So instead of having to "beg for endorsements" you'd rather have to pay to set up a FOSS server?
Yes. I already have to pay for a VPS, for a domain...nothing wrong with paying for an SSL cert. At least I can pick my vendor.
I'm not sure how'd you accomplish this without requiring an EV cert, which is expensive and time-consuming to get, right? I guess manually maintaining a list of free CAs like Let's Encrypt? Idk, I'd never pay for a cert I'd have to manually update where my LE certs are all automatic.
Email does rely on IP reputation as a major component in deciding if something is spam. The system has matured to a point where it works fairly well and transparently ... but the consequence has been you can't reliably send from an IP block unless somebody is very actively handling abuse and working with the reputation services to keep their IP space in the internet's good graces.
But: I wouldn't want to allowlist based just on one reputation service. I've got some ideas on how to handle spam for my instances involving a few different datapoints. This could be useful as one, if it ends up with enough data.