If you think this post would be better suited in a different community, please let me know.

Topics could include (this list is not intending to be exhaustive — if you think something is relevant, then please don’t hesitate to share it):

  • Moderation
  • Handling of illegal content
  • Server structure (system requirements, configs, layouts, etc.)
  • Community transparency/communication
  • Server maintenance (updates, scaling, etc.)
Cross-posts
  1. https://sh.itjust.works/post/27913098
  • Kalcifer@sh.itjust.worksOPEnglish
    11·
    1 year ago

    [Using a hosting service] makes you a more difficult target for attacks but also involves your information getting out into the world in direct connection to your instance.

    I’m not sure I understand how one’s data would be leaked by the hoster.

    • finitebanjo@lemmy.worldEnglish
      1·
      1 year ago

      Same way things get leaked by Equifax, Twitch, US Bank, etc. You’re most responsible with your information by not having unnecessary accounts or transactions.

      Also, most hosts have WhoIs and ICANN registrations for Domains, but you still need a domain regardless. And further than that they might allow subpeonas from various companies who request the info.

      • Kalcifer@sh.itjust.worksOPEnglish
        1·
        1 year ago

        Also, most hosts have WhoIs and ICANN registrations for Domains, but you still need a domain regardless.

        I’m not sure exactly what you are referring to. I don’t exactly follow how the VPS provider would have any privileged insight into one’s domain registration.

        • finitebanjo@lemmy.worldEnglish
          1·
          1 year ago

          I’m saying if you payed for a service to host your instance remotely. The domain, the site pages, the the database, everything. Then, everything on the domain would be tied to your person and the service providers have a certain power over your instance aside from just turning off your domain if you only purchase a domain but dont host via the provider.

      • Kalcifer@sh.itjust.worksOPEnglish
        0·
        1 year ago

        Same way things get leaked by Equifax, Twitch, US Bank, etc. You’re most responsible with your information by not having unnecessary accounts or transactions.

        This would be low down on my concern for threat levels. At any rate, the only way to get around this would be to either host it on one’s own hardware on one’s own network, or to somehow anonymously purchase a VPS (I am currently unaware of a trustworthy VPS that allows anonymous hosting. I have heard of BitLaunch, but I don’t know how trustworthy it is — do they have the ability to intercept control of the DO Droplet?).

      • Kalcifer@sh.itjust.worksOPEnglish
        0·
        1 year ago

        they might allow subpeonas from various companies who request the info.

        “Allow” is an interesting choice of words. A subpoena is legally binding (depending on the jurisdiction). One could circumvent this by purchasing a domain anonymously, but I’m not currently aware of a reputable domain provider that allows anonymous purchasing of domains.

        Addendum (2024-11-11T23:38Z):

        I did just find Njalla which seems to allow anonymous purchasing of domains, but idk how reputable they are.