I have a port forwarding without any tunnel to third parties and Wireguard.

I think there’s two concurrent, but different definitions of the word Fediverse. One means, software that can speak the ActivityPub protocol. And the other one means, social media service which is able to interconnect between different websites.

The first one is more useful if you want to use it and know whether it connects you to your friends on Mastodon and the other big ones. The latter is the more technical definition and includes older protocols as well, as well as newer ones and alternative approaches to form a network in a certain way. I guess it’s the more correct one. But it doesn’t tell you a lot as a user. Maybe technically it can exchange your user statuses but nobody uses it so you can’t really do anything with it in reality. Or there’s two approaches and you were talking about a different manifestation than somebody else, and you’re both federated but not part of any compatible ecosystem.

I think there’s pros and cons to everything. That way would have been less of a dickhead move towards the Forgejo developers. But a big letdown to admins as they don’t know what’s up with the software they’re running on their servers. The way the author chose gives some new intelligence to admins, and they can now act on it, since it’s public knowledge. But it’s annoying to the devs.

I guess I as a Forgejo user am kinda greatful they did it this way. Now I got to learn the story and can allocate 2h on the weekend to see if my personal Forgejo container is isolated enough and whether the backups still work.

(But that’s just my opinion after reading one side of the story. Maybe there’s more to the story and they’re being a dick nonetheless…)

Edit: And regarding just dropping the security team an informal mail… I don’t know if that’s clever. You’d normally either follow some security policy, or don’t engage. Sending them other kinds of mails which violate their policy (an internal carrot) might not be the best choice.

Thx very much. That’s valuable info. I edited my comment and crossed it off my list of software to evaluate for future projects. I already got the vibe-coding and a bit of sketchiness by scrolling through the latest commits and issue tracker.

Thanks for pointing it out. Yeah it does. I just copy-pasted what I found and didn’t check.

Sure, I’m not debating that. And there’s other ways to destroy or impede (with) something to generate attention towards it. Sorry for getting political here, but other example that comes to my mind is how people supposedly cut cable ties of the German train system to draw attention to the cause of climate politics. It is massively annoying for all commuters, and people who are already on board for a more enviromentally friendly way to get to work. Because now everyone is 2h late, except people with a car. And I always question the validity of it.
But ultimately it’s completely unclear who does it. Could very well be people trying to make climate activists look bad in some false-flag-operation. And in this instance (post deletion) I’m willing to believe it’s genuine.
But the gist of it is the same… Is it going to archieve the long-term goal? Because the short- and mid-term way of working is, you’re being destructive to tear down the remaining good things about something faster, so it eventually is going to have to get replaced… And I’m more on board with, focus on direct constructivism. For example I just left Reddit and went here. And I’m somewhat happy the crowd working towards something is more pronounced than the people immediately trying to destroy it as well. I mean theoretically we probably should - by that reasoning. I’ve seen the AI scrapers hammer my Fediverse instance, too.

Uh. I hate the power deleters. It mainly makes conversation worse for the remaining humans on Reddit.

Yes. I’ve been somewhat lucky as well. Upgraded my homeserver to 48GB to run a few virtual machines and maxed out my old laptop well before prices skyrocketed. Got to check if I still pay the ~8€ a month for my netcup VPS or if they increased price for existing customers as well…

Was pretty much clear since last year. At the latest in December when they switched to “maintenance mode”. And now they archived it.

https://blog.vonng.com/en/db/minio-is-dead/

Alternatives include Garage, SeaweedFS (and RustFS).

Edit: RustFS looks very sketchy. Read object Object’s comment below before using it.

I think I get those emails twice a year. And it’s usually same price and double storage for the VPSes. Can recommend netcup.de as well. They used to be a bit cheaper than today, but I guess every hoster increased price within the last year.

I’d let the home server connect to the VPN on the VPS so there’s a direct tunnel between the VPS and the home server. And the router is pretty much irrelevant. You can of course choose to terminate it on the router as well, bus as you said, that requires either a second forwarding. Or the entire home network to be bridged or routed.

I think a few people already mentioned some good solutions. I just wanted to add: A port forwarding in the firewall of your router is the basically the same thing as a port forwarding on your Linux computer’s firewall. You could just set up any VPN, SSH tunnel or whatever and then use your firewall (nftables, iptables) and forward the VPS’ extetnal port to the internal port on the VPN. It’s the same thing you do on your router, just that you don’t get a graphical interface to configure it.

I’ll do my very best. I mean not “have you heard of our lord and saviour RMS” style… But you can definitely have some fun with teaching teenagers to use Kdenlive. Or ask them whether they’re interested in setting up a Luanti world with loads of additional mods. 😀

Yes. With other projects, I often found it is problematic. Like Claude come up with lots of advertisement text, but the software doesn’t even do a fraction of it. Or the install instructions are made up and nothing works… So I usually advise for caution once a project has a wide disparity in claims, stars and signs of actual usage… But I can’t tell what’s the case here, without a proper look. It definitely has some red flags.

I appreciate people being upfront, as well. Ain’t easy. Just try to install and test it before advertising for the project.

Yeah, they’re transparent about AI usage. There’s a small paragraph at the bottom of their README.

I mean the website sounds like AI text. The repo is fairly new. Only 1 issue report about how something doesn’t work, zero PRs and seems it’s a single person uploading commits… I’d wait a bit before deploying my production services on it 😅 They’re making a lot of bold claims in the README, though.

I think so as well. The computer isn’t really good to “use” it. That’s more the category for experiments. Or teach people how to install Linux. Or a computer museum corner and you put vintage games on it. Or just recycle it.

And a box with RAM sticks collecting dust isn’t useful either. Put whatever is compatible into other computers, and then try to sell and recycle them. Seems 4GB DDR3L RAM modules still sell for 1 to 4€ on eBay?! So maybe you can make a few bucks to invest in other projects for the kids.

I found some info here: https://ageverification.dev/

But that’s difficult to read, very technical. And mostly written from the user perspective. It looks to me like they’re (for once) trying to come up with a proper solution. Everyone can be an Attestation Provider, Relying Party or repurpose the white-label App. At least in theory. It’s all specified and in the open. And then the European Union contributes some list of trustworthy Attestation Providers (governments, banks, mobile network providers…)

I think due to the project structure, it’ll be more like the Covid-Certificate App, which could be customized by every member state and it’s theoretically possible to use it as one uniform solution.

So unless there’s some certification for “Relying Parties” which I missed while skimming the documentation, I’d say in theory it’d be possible to use it on a technical level. Of course it’s still a preview so the EU has lots of opportunity left to mess it up.

Does the App allow random platforms to do verification? Or do we need to be some registered business, do contracts, likely pay for the service…? For the App to speak to our instances?

I think you need some Agent software. Or a MCP server for your existing software. It depends a bit on what you’re doing, whether that’s just chatting and asking questions that need to be googled. Or vibe coding… Or query the documents on your computer. As I said there’s OpenClaw which can do pretty much everything including wreck your computer. I’m also aware of OpenCode, AutoGPT, Aider, Tabby, CrewAI, …

The Ollama projects has some software linked on their page: https://github.com/ollama/ollama?tab=readme-ov-file#chat-interfaces
They’re sorted by use-case. And whether they’re desktop software or a webinterface. Maybe that’s a good starting point.

What you’d usually do is install it and connect it to your model / inference software via that software’s OpenAI-compatible API endpoint. But it frequently ends up being a chore. If you use some paid service (ChatGPT), they’ll contract with Google to do the search for you, Youtube, etc. And once you do it yourself, you’re gonna need all sorts of developer accounts and API tokens, to automatically access Google’s search API… You might get blocked from YouTube if you host your software on a VPS in a datacenter… That’s kinda how the internet is these days. All the big companies like Google and their competitors require access tokens or there won’t be any search results. At least that was my experience.

Thanks! I didn’t know about these. I was just aware of Apertus from the Swiss National AI Iniative. But from my experience, they weren’t great. Might look into Olmo 3, then.