this post was submitted on 17 Aug 2023
57 points (87.0% liked)

Fediverse

28480 readers
707 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 2 years ago
MODERATORS
 

Are there any paid services for either Lemmy or Mastodon? Something where, given it is a subscription service, you would expect them to stick around long-term?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 25 points 1 year ago (3 children)

Not sure how tech savvy you are, but hosting your own server costs a few euros per month, you decide how long it stays up and you are chief in command.

[–] [email protected] 7 points 1 year ago (1 children)

Second this. And other instances would still be accessible. Even more so since lemmy.world (along with probably some others) is starting censorship, which wouldn't affect you, since you decide what you can see.

[–] [email protected] 2 points 1 year ago (3 children)

I'd love to self host one for everyone but not allow communities. The idea would be that I federate with everyone no matter what and leave a what the user wants to sub to up to them. No censorship at all.

Not having communities would mean I don't have to worry about what I host and have other instances defederate with me. Plus, I have no interest in being mod, dealing with DCMA,user reports, etc.

[–] [email protected] 5 points 1 year ago* (last edited 1 year ago) (1 children)

You can disable communities on your instance as an admin, but you would need to disable uploading.

[–] [email protected] 4 points 1 year ago (3 children)

Would that allow someone to still post/upload on other communities? Honestly haven't looked into this at all. Was going to in a couple weeks when I have time to actually sit down and test

[–] [email protected] 4 points 1 year ago

If a user from your instance posts to a community and wants to upload a file, that file will be saved to your instance. Not the instance in which the community is. Keep that in mind.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago) (2 children)

Yep. My instance just has me on it and posting elsewhere works without issue. Anything I upload goes to my instance and federates out. It's really quite great not having to worry about the instance drama when big ones defederate from each other. I also turned off NSFW so I don't have to worry about any of that content (legal or otherwise) even hitting my server.

Here's an image of me making this comment via Sync for Lemmy

Edit: I have community creation locked down to admins, which everything disables them on my instance.

[–] [email protected] 3 points 1 year ago (1 children)

I did the same thing for the same reason. Admin approval for everything and I'm the only admin. Basically a personal instance for me and my friends if they're too lazy to host but want to try Lemmy.

[–] [email protected] 3 points 1 year ago (1 children)

Exactly. I went one step further and decided not to use my admin account as my main. I don't run around as root on servers so I try not to do that with apps. It's easier with Lemmy because once it's set up all the admin tasks hit my email.

I also wanted to avoid that vulnerability that hit Lemmy World a few weeks ago that was only possible because the server admin got their jwt stolen, which wouldn't have been so impactful if they weren't on the admin account.

[–] [email protected] 1 points 1 year ago (1 children)

I didn't read the story about how exactly he lost the jwt, but is it still as big of an issue since 2fa was introduced?

I guess existing jwt hashes will bypass 2fa, but I'm not super worried since my instance has 3 users.

[–] [email protected] 1 points 1 year ago (1 children)

2fa was in at the time. IIRC the jwt was granted after 2fa so it didn't matter.

You've got a point though, small instances aren't gonna be nearly as useful as a giant one to threat actors. Assuming you don't give them a reason to go after you specifically they wouldn't have a reason to target such a tiny server.

Still though, I don't need that shiny A next to my name so I'm good with how I have it set up.

[–] [email protected] 1 points 1 year ago (1 children)

You could really mess with people and use [email protected] but not have it as the admin account. hah. You host it at home or out "in the cloud"? Curious what others do.

I have a couple VPSes for my Tailscale exit nodes and one as an ingress/proxy for my selfhosted stuff at home. They're all super cheap and have unmetered* network connections. Kubernetes on some PIs and Lenovo tinys support all my services at home.

[–] [email protected] 1 points 1 year ago

I have this one on a Hetzner server that runs me like $6/mo. I'm not comfortable with the federated nature of things potentially putting CSAM or other illegal content on disk in my home.

I use tailscale so I can still hit my internal (at home) git repos and all that. The rest of my stuff is all hosted on an old gaming PC I turned into a Proxmox host that sits in my spare bedroom. Of those services, I only expose like 3 things to the outside world. Nextcloud being the main one. I don't route it through my VPS, just proxy it through cloudflare.

[–] [email protected] 2 points 1 year ago (1 children)

I assume lemmy doesn't clean up images after X days/years? it would be pointless if it does... I'm a datahoarder but paying storage costs to host this stuff doesn't fit in the budget. I guess I have a lot of things to consider. Thanks!

[–] [email protected] 3 points 1 year ago (1 children)

Yeah I haven't found anything for cleanup maintenance. Right now with just me my disk usage is increasing ~300MB per day. I'm debating purging stuff older than 30 days or something. The only stuff where my server is the source of truth is my profile and communities on my instance.

We'll see though, this is just a fun little side thing I'm not taking too seriously.

[–] [email protected] 1 points 1 year ago (1 children)

You've made 32 comments. 300MB a day must be mostly cache content from other instances that you're viewing. I don't see any reason to keep that past 30 days. I might even say 14 days.

I have a couple hours today. I've set up an instance pretty easily. Resources with just me doesn't seem bad at all. Your other comment about illegal uploads is what's holding me back from making a public one. Not only do I not want to be a mod, I don't want to see that shit. I have a hard enough time seeing the thumbnail of some lemmyNSFW before I can block it.

I love that tailscale/wireguard doesn't reply to UDP packets without the key. I only have the one UDP port open at my house. All my hosts are on tailscale. Sadily Matrix and Lemmy need to be public public.

[–] [email protected] 2 points 1 year ago

The growth is happening mostly in the pictrs and db containers. I know pictrs is optional if you're not uploading pics yourself, but I didn't want to limit myself on that. I haven't dived into where the db growth is happening yet either. Right now my hurdle is there doesn't seem to be any baked in maintenance tools, so it's all going to be me editing the database directly. I'm okay with doing it but need to figure out how to not purge content I have saved via Lemmy.

As far as NSFW stuff, there's a check box for the instance settings for enabling NSFW instance wide. I have it unchecked and haven't seen a single NSFW post browsing through my instance. It does require things to be marked as such though. I'll probably go the extra step and defederate the porn instances just to add another layer.

Please let me know if you find anything useful for maintaining the instance.

[–] [email protected] 2 points 1 year ago (2 children)

Commenting because I'm also interested

[–] [email protected] 1 points 1 year ago (1 children)

When I finally look into it I'll make sure to let you know. Are you going to selfhist yourself or just want to use it if I actually set it up? Maybe you can help me host it. Lol

[–] [email protected] 2 points 1 year ago (2 children)

If you let me know how to help you, then I'm in. I have a raspberry pi 4 and some external hard drives. That's it. But I also have some money and would rather help you than host a lonely instance, Mr skankhunt

[–] [email protected] 2 points 1 year ago

I'll have to read about local laws and if I can get in trouble for what the users do/upload. I have no interest in dealing with legal shit... If I'm safe then I'll have to see how much people charge for storage these days. I don't really want to run it from my house and I don't have a lot of disposable income to run it out in the internet somewhere.

[–] [email protected] 1 points 1 year ago

Has money but not enough money to leave their cage. Very sad

[–] [email protected] 4 points 1 year ago (1 children)

Your instance will be mirroring (essentially storing a copy of) content from instances it federates with. Depending on your local laws you might be held liable for this.

[–] [email protected] 3 points 1 year ago (1 children)

Yeah, Thank you for this.

It sounds like I'll also have to store any images my users upload. I'm all for free speech and being anonymous online so I'll avoid logs and the like but I guess I'll have to read Canadian law to see if I want to risk running an instance or not. I cant afford a lawyer, nor do I want to deal with anything that goes along with that.

[–] [email protected] 2 points 1 year ago

The GDPR is also a whole other beast that could suckerpunch any instance at any point.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago) (1 children)

Have you heard of what happened to Rammy? The admin went MIA, a bunch of trolls set up shop, and they (as expected) got defederated from the majority of the network for being an unmoderated trashfire. Or earlier incidents regarding a bunch of open registration instances getting bot sign ups even if those accounts never did anything (to the best of my knowledge anyway).

If you are going to host an instance open to public registrations you need moderation. Even if it's just to keep the spammers and trolls at bay.

[–] [email protected] 1 points 1 year ago

If you are going to host an instance open to public registrations you need moderation. Even if it’s just to keep the spammers and trolls at bay.

Yeah, good point. Lots of things to consider. Thanks for this!

[–] [email protected] 3 points 1 year ago

Yeah, I may go with this option, but I really like the idea of helping create an economy. I suspect one of the Achilles heels of the Fediverse will be instances disappearing after users based their identity on a free server that the host eventually lost interest. Time will tell. I may be wrong. But also may be right.