I wonder what the comment that was replying to looks like…

Caddy is my web server of choice but it doesn’t have a UI like NPM.

It bothers me that in the thumbnail image they have daisy chained two floating carriers in order to carry and amount of cargo that would comfortably fit on Sam’s back alone.

Yeah Nextcloud won’t mention VPN for hardening because the assumption is you want it publicly accessible.

I have a number of things publicly accessible and there are a number of things I do to secure them. crowdsec monitoring and blocking, a reverse proxy with OIDC for authentication, a WAF in front of it all. But those are only for the things I have exposed because I want other people to use them. If it’s something just for me, I don’t bother with all that and just access it via VPN.

It’s not the only answer, but it’s the one that will get you the most secure with the least amount of effort.

Have they fixed the titles of saved links being clipped for no reason?

I found Linkwarden entirely unusable because of this and switched to KaraKeep the moment I realized they’d mastered the ancient magic of “Make sure the link titles are actually fully visible”

EDIT: It would appear not since I can see they’re clipped in the thumbnail lol. All that wasted space sitting there doing nothing when it could be… containing the title of the link.

https://youtu.be/GuTp4Am51i0

There’s a group with a petition to “Stop Killing Games” which seeks to legally remedy the issue of game developers making games that are later turned off and left unplayable even in the case of them being single player.

Thor of PirateSoftware owns a development outfit that makes indie games and he also does a lot of streams. He’s against Stop Killing Games, but doesn’t seem to even understand it, and has publicly spoke out against it, going so far as to spread misinformation about it.

Anything you expose to the internet publicly will be attacked, just about constantly. Brute force attempts, exploit attempts, the whole nine. It is a ubiquitous and fundamental truth I’m afraid. If you think it’s not happening to you, you just don’t know enough about what you’re doing to realize.

You can mitigate it, but you can’t stop it. There’s a reason you’ll hear terms like “attack surface” used when discussing this stuff. There’s no “if” factor when it comes to being attacked. If you have an attack surface, it is being attacked.

If you loosely follow the definition of social media to mean “Website where you can interact with people in any way” then yes.

But I think the average colloquial use of the term social media really refers to websites where you make a real life personal profile and share things on that profile. Facebook, Instagram, Twitter, etc. You as the individual are the focus of those types of sites.

The (original at least) point of sites like Lemmy and Reddit is sharing information where you as an individual are not the focus. Hence posting to communities rather than your own wall or profile, the use of usernames over real names etc.

I’ve been served PirateSoftware’s shorts long before all this controversy and it always bugged me how confidently wrong he was about systems and network things. He seems to be under the impression that he understands these things on an advanced level due to his experience as a checks notes QA tester for Blizzard, and a… indie software developer lol.

All this backlash against him is so vindicating.

I mean, big YouTubers like Charlie and others covering Thor’s bullshit is what drove this huge spike in signatures so maybe we should be thanking Thor lol

If you’re a beginner and you’re looking for the most secure way with least amount of effort, just VPN into your home network using something like WireGuard, or use an off the shelf mesh vpn like Tailscale to connect directly to your JF server. You can give access to your VPN to other people to use. Tailscale would be the easiest to do this with, but if you want to go full self-hosted you can do it with WireGuard if you’re willing to put in a little extra leg work.

What I’ve done in the past is run a reverse proxy on a cloud VPS and tunnel that to the JF server. The cloud VPS acts as a reverse proxy and a web application firewall which blocks common exploits, failed connection attempts etc. you can take it one step beyond that if you want people to authenticate BEFORE they reach your server by using an oauth provider and whatever forward Auth your reverse proxy software supports.