@white_male@thatguyoverthere Nobody has staging for all of their production VMs, unless they run very few systems. Wanting hands-off security upgrades for all of your production environments is not lazy, but rational. Staging is mostly for testing application updates, not basic system upgrades.
@thatguyoverthere Everything's a tradeoff. It's nice to never have to re-install or dist-upgrade, but it's also nice to be able to update continuously and without human interaction, with nothing breaking in the process.
@lain Sheesh, I hope he won't interfere in the country's long history of top-notch, ever successful economic and monetary policies. Who knows what could happen!
@rrb@ZekuZelalem There's nothing special to the fediverse in this case. Just making your instance *also* available on a different network for client-to-instance communication.
If you want your instance to live exclusively on Tor or I2P, then you would create a new fediverse, which cannot communicate with the rest, since all normal instances run on clearnet and use DNS for addressing.
@ZekuZelalem@rrb No problem at all. We also make our instance accessible as a hidden service. The steps are basically:
* For convenience, create an Nginx snippet for most of the config so you can easily add more domains/vhosts * Set up Tor hidden services pointing to port 80 and 443 * Advertise the onion address via the "Onion-Location" HTTP header, so visitors can easily discover it when opening your normal domain in the Tor browser
@lukem E-Mail is the only federated protocol that pretty much everyone on the Internet knows and uses, and the user addresses are the same format even. What do you think is a better analogy, if you think this one isn't good enough?
@lain However, it's a fairly small target, so if they have decent uplinks anyway, I imagine live surveillance (and thus evidence collection) of all physical vectors wouldn't be that difficult.