ticoombs

joined 1 year ago
MODERATOR OF
[–] [email protected] 5 points 1 week ago (1 children)

Having a list of all alternatives in the sidebar of alternative places to find people is my recommendation. Thus if people wish to keep a backup community on Reddthat I'm sure to let them.

[–] [email protected] 2 points 2 weeks ago (1 children)

I made sure that cerbot did an nginx reload after it provisioned the cert.

 

when someone opens up the hard drive of a redbox unit, they can pull a file which has a complete list of titles ever rented, and the email addresses of the people who rented them, and where and when

[–] [email protected] 1 points 1 month ago* (last edited 1 month ago)

Article says the initial compromise of the non-airgapped systems is an unknown vector. So how they got into the organisation(s) in the first place is still a mystery

[–] [email protected] 6 points 1 month ago (3 children)

Turns out it wasn't the certificate, but the post-renewal restart of the web-server wasn't working.

We've fixed that up and now LW content is coming in hot and fast!

 

Our proxy in Amsterdam has a reddthat.com SSL certificate.

It didn't renew correctly.

We are investigating

 

What a good browser...

[–] [email protected] 14 points 1 month ago

This is sso support as the client. So you could use any backend that supports the oauth backend (I assume, didn't look at it yet).

So you could use a forgejo instance, immediately making your git hosting instance a social platform, if you wanted.
Or use something as self hostable like hydra.

Or you can use the social platforms that already exist such as Google or Microsoft. Allowing faster onboarding to joining the fediverse. While allowing the issues that come with user creation to be passed onto a bigger player who already does verification. All of these features are up for your instance to decide on.
The best part, if you don't agree with what your instance decides on, you can migrate to one that has a policy that coincides with your values.

Hope that gives you an idea behind why this feature is warranted.

[–] [email protected] 3 points 1 month ago (1 children)

Possibly, as it's one generic endpoint, but it also blocked a few other things people in the fediverse created, which are mighty helpful in diagnosis of these and other issues.

So using some AI model or whatever CF uses is probably not going to be the best thing for us as it classified a POST request as a crawler?? 🤷

I'd have to whitelist every regular endpoint as well and then it gets messy as CF only gives you so much control as a free user.

So, for the moment I've blocked the most annoying ones based on UserAgent.

[–] [email protected] 18 points 1 month ago (5 children)

We enabled the CloudFlare AI bots and Crawlers mode around 0:00 UTC (20/Sept).

This was because we had a huge number of AI scrapers that were attempting to scan the whole lemmyverse.

It successfully blocked them... While also blocking federation 😴

I've disabled the block. Within the next hour we should see federation traffic come through.

Sorry for the unfortunate delay in new posts!

Tiff

 

to be paired with tang

[–] [email protected] 1 points 2 months ago

Thankyou! That made my day! (And the servers filled with coffee)

 

Highly relevant to us (as admins)

 

Not so much a sploit but an easy way to do broadcasting!

 

We had a brief outage today due to the server running out of space.

I have been tracking our usage but associated it with extra logging and the extra build caches/etc that we've being doing.

Turns out the problem was the frontend Next-UI which has been caching every image since the container was created! All 75GB of cached data!

Once diagnosed it was a simple solution to fix. I'm yet to notify the project of this error/oversight and I'll edit this once Issues/PRs are created.
I also haven't looked at turning the caching off yet as my priority was recovering the main Reddthat service.

Thanks all for being here!

Tiff

 
 
[–] [email protected] 1 points 3 months ago* (last edited 3 months ago)

I've always wanted to do colocation and looked into it when I first started Reddthat and we had our initial growth. We are lucky we didn't otherwise I would be out of money ages ago!
The aruba.it colocation is about the same price as our OVH server which would be probably the most viable as we are close to having enough donators to have a long enough runway it would make sense.


(Goal being: A$150/m ~ USD$100/€90. And OpenCollective doing some magical nonsense with the Total amount we have left and averaging it across 12 months or something)

The 32GB of RAM we have currently is overkill for an instance of our size. We could get away with using 16GB and still have room to grow for the next year. Which will probably be what will happen in April, but I'll re-evaluate before then and see whether a colocation option is viable.
Our stance on downvotes, and lack of super-popular local communities means we are growing slowly over time and are very stable in requirements. Lemmy still being in it's infancy means there are problems that are no fault of the hardware but the software. An example would be the latest issue we were experiencing where no matter what resources we had, it would result in 100% CPU usage for brief periods, with 10-20s page loads for everyone during that period.

I am very tempted but I still need to make sure I am being responsible with the donations. By next year we'll most likely be over 1TB of object storage and our S3 costs will slowly start increasing MoM. While not a lot I still need to factor it in growing costs.

[–] [email protected] 4 points 3 months ago* (last edited 3 months ago)

Yeah! Except it wasn't just images. Instead it was all links. And inside the Lemmy process and it would block all other connections! Which is the why it was an issue! Super weird.

But the whole Lemmy app is full of these issues hiding in the background. People seem to forget it's still in its infancy and expect a 1-1 Reddit experience. We regularly get people signing up and then quitting like the thread from last week regarding the lack of downvotes. Or the lack of X,Y,Z.

</end rant>

It's fixed for Reddthat now, which is the best part! 😉

[–] [email protected] 3 points 3 months ago
[–] [email protected] 0 points 3 months ago

I"M A MOD LOOK AT ME

view more: next ›