| ▲ | apitman 4 days ago |
| I'm optimistic about self-hosting/self sovereignty (which both fall under the umbrella of what I call indie hosting) long term. But I think both of these articles gloss over the fact that end-to-end encryption has never been shown to work in a real system with normal people. Key management is a completely unsolved problem. If you don't have e2ee, with current tooling most people will need someone they trust to run their server. But then you run into a privacy paradox: most people have more content they would rather have google looking at/training on than someone close to them looking at, than the other way around. Personally I think the next step forward is improving software to be more turnkey so everyone can run their own as a GUI app on an old laptop or phone. That said, we definitely need protocols for sharing stuff. |
|
| ▲ | NoraCodes 4 days ago | parent | next [-] |
| > end-to-end encryption has never been shown to work in a real system with normal people I would argue that Signal is a great example of this working quite well, and tons of normal people use Signal. It's no more frictional than WhatsApp. |
| |
| ▲ | apitman 4 days ago | parent | next [-] | | Signal is a promising example, but ephemeral messaging is a very different use case from things like photo management. | |
| ▲ | ants_everywhere 4 days ago | parent | prev [-] | | Signal has a lot of problems with changing devices while preserving history. As in it's often just impossible. | | |
|
|
| ▲ | j45 4 days ago | parent | prev | next [-] |
| These are all solved problems depending on what someone is after. Tools like tailscale/headscale combined with proxmox give most people point and click self hosting close to using a digital ocean droplet (which should never be used in production). |
| |
| ▲ | apitman 4 days ago | parent | next [-] | | Tailscale + Proxmox is still an order of magnitude more difficult than this is going to need to be. | | |
| ▲ | j45 4 days ago | parent [-] | | One can follow a video in about an hour maybe two and be up and have the basics down with proxmox. Of course, if someone wants to figure out perfection the first time it might take a bit longer. | | |
| ▲ | apitman 3 days ago | parent [-] | | Like I said, an order of magnitude harder than it should be. It should be install app, do an oauth flow to open a tunnel, done. | | |
|
| |
| ▲ | xp84 4 days ago | parent | prev [-] | | What should never be used in prod? | | |
| ▲ | j45 4 days ago | parent [-] | | Digital Ocean. Notes in my previous comments somewhere, I can see if I can find it. Among other things, their system has a massive bug that will delete your servers without notifying anyone with a valid and working CC on file. |
|
|
|
| ▲ | wmf 4 days ago | parent | prev | next [-] |
| If Self-hosting doesn't have dissident-level privacy it's still dramatically better than centralized SaaS. |
|
| ▲ | fsflover 4 days ago | parent | prev [-] |
| > end-to-end encryption has never been shown to work in a real system with normal people Matrix has solved this problem. |
| |
| ▲ | apitman 4 days ago | parent [-] | | I've tried to adopt Matrix multiple times over years. IMO the UX is evidence that e2ee is not solved. | | |
| ▲ | Arathorn 4 days ago | parent [-] | | we solved it in element x, but there appears to be massive inertia towards adopting it because it doesn’t have threads or spaces yet. | | |
| ▲ | apitman 4 days ago | parent [-] | | If I only use 1 device for 5 years, then lose it, how do I recover? | | |
| ▲ | fsflover 3 days ago | parent [-] | | From a backup? | | |
| ▲ | apitman 3 days ago | parent [-] | | Backed up from what? People only use the cloud for backups, at which point the e2ee is compromised. | | |
| ▲ | fsflover 2 days ago | parent [-] | | It doesn't matter what people are currently doing. In Matrix, there is a possibility to make reliable, encrypted backups. It can also be done with a simple interface. |
|
|
|
|
|
|
