Tbf, technically data is still decrypted at the reverse proxy and then re-encrypted. So if someone manages to reconfigure the proxy or read its memory somehow they could read traffic in plain text.
However then since they have to control the VPS, they could also get a new cert for that domain (at least the way I’ve configured it) even if it was passed as is to the real host via a tunnel and read the plaintext data that way, so I don’t think a tunnel protects against anything.
If someone manages to get root (!) access on this VPS it’s over either way.
Yes, you can just use a reverse proxy for IPv4 only and point it to the IPv6 upstream. That is what I do, with a separate DNS record which then combines the two. See the DNS records for id.knifepoint.net (CNAME), http.vineta.knifepoint.net (AAAA, A) and vineta.knifepoint.net (AAAA).
The reverse proxy config and certificate management is set up with NixOS, if it helps: https://git.dblsaiko.net/systems/tree/nixos/defaults/v4proxy.nix https://git.dblsaiko.net/systems/tree/nixos/modules/sys2x/v4proxy.nix
The experimental status is more about that not everything is implemented yet (not that everything can be implemented, for example due to HTML not being oriented around having multiple pages in a document), so you have to write a bit of raw HTML sometimes. This is an example of how raw HTML looks, it’s the shell for my webpage.
There’s experimental HTML support. I’m using Typst as a static site builder for my website.
Two different rDNS names, for stuff that uses it. For example if you want to run mail and an IRC bouncer under different domain names.
Lists with 100k items? Impressive. I can see how with a document like that it will run out of memory. Is it a stack overflow? You could try increasing the stack size in that case.
As a Typst enjoyer I have to say this isn’t it imo from a quick look at the readme. Typst’s mix of markup and code modes is excellently designed and a high bar for anything to beat, and this looks like it doesn’t come remotely close. (I do have to say, I also heavily dislike Markdown in general)
Yup, anything you can come up with will only work as well as putting “Delete after reading.” in the mail. You have to trust the recipient.
Daniel Stenberg has banned AI-edited bug reports from cURL because they were exclusively nonsense and just wasted their time. Just because it gets a hit once doesn’t mean it’s good at this either.
Is that Outlook or Outlook (New)?
From its web page it sounds like it is both a MTA and MDA, has a built-in spam filter, plus has calendar, contacts and file storage. Do you know how it compares to my current setup of Postfix, Dovecot, and rspamd (and Nextcloud for the others)?
Oh interesting, I didn’t know about this at all. It seems a bit related to the whole “children aren’t solely raised by their parents, but the entire community” idea.
From a quick look at the wikipedia page, guanxi sounds like a very different model of interpersonal relationships than what we have here. It seems like there’s also a lot more overlap between “business” and personal/private relationships.
What this makes me wonder is how does this whole thing affect familial abuse, which is primarily about control, this seems like it would make it a lot harder to get away from abusive family members.
I wonder what the parental requirement means effectively if your parents do not live in China lol
They’re getting there, I think. Chengdu is already looking pretty good when it comes to that.
Ah okay, so you know some behind the scenes info or at least more than just this. My bad, but tbh you should have lead with that because initially I thought you completely misread what the text was saying because I pretty clearly read the queer mentions as “this is not just transphobic attacks by bigots” (see my other comment). Sorry!
I didn’t say that. I would say it makes it much less likely though especially for someone who is openly trans and given someone who has text like “trans rights are human rights” on her web page. Of course it’s not impossible, but it would certainly be hypocritical and goes contrary to the vibe I’m getting from her.
You’re the first one who brought this up. Where is the context for what you are talking about? Which people are saying she’s a bigot?
Did we read the same text file? I’m seeing none of what you’re talking about. The person who wrote this is also trans.
Oh interesting, I’ll have to look into that. Is this with that “proxy protocol” I’ve seen mentioned? If not, does this preserve it pass through the client socket address?