If your budget allows, I recommend you buying an Intel 12th gen i3 12100 with a low tier ITX board with say H610 instead of J5040. J5040 is not a bad chip for its class but it is significantly underpowered.
Seriously if you really want to host your own instance, it is more or less your responsibility as an admin to moderate that instance. That includes purging and blocking unwanted contents. There is no way to avoid that.
As for your suggestion, it largely boils down to restricting anonymous access to the search related APIs in an instance. It is no doubt a good feature, espeically for read-only instances. I think you can create an issue about it in Github to get more visibility from the devs.
Yes the basic auth way I suggested only protects the lemmy-ui from being accessed which is the lowest hanging fruit in the equation. That's also why I call it the "simplest way". "Interested parties" can still access your instance via API if they know their way.
It would not affect federation as the endpoints are still open. But a word of caution. This only protects the lemmy-ui from being accessed without the basic auth credentials. If someone tries to access your instance via API, it will still work.
It would be greater if it can also leverage IPFS. So we can have unique identifiers per media object and hence deduplication in a P2P network which in my opinion is more federvise affinitive. I have been thinking of making such an alternative media backend for a while.
If your dynamic pages leverage PHP, Nginx can be configured to support that via FastCGI. If your site has its own server runtime (e.g. a site written with NodeJS or Go), Nginx reverse proxy is literally its strength. So yeah give Nginx a try. I bet you won't regret it.
I think the question is if you want to add the external USB hard drives to Proxmox so that not just the mentioned Ubuntu VM but other VMs and LXCs can benefit from them or if you want them to be added exclusively to the Ubuntu VM and Ubuntu VM only.
If it is the latter, you can leverage USB device passthrough and passthrough the two drives to the VM in whole. Then you can do whatever you want with them inside the VM. You can use ZFS or BTRFS or mdadm to create a stripe aka RAID 0 config.
If you, as the sole user, are not subscribing to dozens if not hundreds of communities, 1GB should be barely okay. As others have pointed out, it is storage that requires more attention with a Pi 4B.
The tech behind Outline Shadowsocks is solid. It establishes a private tunnel to your server in the free world and attempts to obfuscate the traffic as much as possible. The project is not really abandoned. There are still continuous development/maintenance activities in the repo.
Wireguard does not intentionally obfuscate its traffic. If the said authoritarian country has invested in deep packet inspection, the traffic can be easily flagged and retarded.
Basically the sequence of events as claimed by the author is that:
XMPP small niche, small circles
Google launches Talk that was XMPP compatible
Millions joined Talk that could coop XMPP in theory
The coop worked only sparingly and was unidirectional, i.e. Talk to XMPP ✅ but XMPP to Talk ❌
Talk sucked up existing XMPP users as it was obviously a better option (bandwagon effect + unidirectional "compatibility" with XMPP)
Talk defederated
This demonstrated exactly the importance of reciprocity. If Meta plays dirty, defederate them then. Now is just too premature. Also frankly it is Meta that has more to lose than the fediverse at this moment as the bulk of users and thus the content are with Meta.
Qazwsxedcrfv000 @ qazwsxedcrfv000 @lemmy.unknownsys.com Posts 0Comments 99Joined 2 yr. ago
If your budget allows, I recommend you buying an Intel 12th gen i3 12100 with a low tier ITX board with say H610 instead of J5040. J5040 is not a bad chip for its class but it is significantly underpowered.