but if we change the trust model to a federation with a strong "leader", then it basically becomes pretty similar to what we have here today, with the added benefit that the admin doesn't have to carry all the costs of running the instance
@ikmertz it looks like tor has some nice dos protections built in, especially for v3 hidden services. ideally i'd try to use those instead of relying on external providers
i'm not too familiar with those stuff, but i read the tor manpage and it had a few interesting options to limit bandwidth burts to prevent dos attacks.
plus, there's a way to kill circuits that spams too much, and considering that building a circuit is fairly expensive, this would limit the capacity of an attacker to take down an hidden service
@afilini @ikmertz individual hidden services. I guess those things can help, especially against unmotivated attackers, but they are not prevending DoS entirely. I am not entirely familiar with that world, but recently Dread admin threaten to boot from Dream all dark markets which will be discovered DoSing each other (as he/she was in the known that multiple markets where paying attackers to do that). So yes, it still a problem.
@Seccour that could help for some stuff, but it would mainly distribute just the http part, not all the other components of a mastodon instance (storage, background processing, etc)
still very interesting, i'll take it into account as well
@afilini Really only issue I can think of would be changing the dynamic of trusting privacy of DMs from one entity to multiple, but that's already kind of a problem cross-instance anyway and a general weakness of Mastodon.
@rusticbison i'm not a huge fan of ipfs myself because it doesn't really replicate data unless many people download a specific file. i guess it would work, but I'd try with something else first if possible
@afilini from a UX standpoint IPFS is also really slow and often unreliable. Maybe webasm w/ local storage in the browser is better, especially if you don't try to persist content forever.
@afilini bitcoinhackers has nothing to do with what you are talking about. NVK said he’d do it. And if he needed money there are plenty of us who would fund it with him. No reason to try to make this political. Really uncalled for.
@hanakookie it's not political in any way. i'm just saying that hosting a large instance at home is not practical, while instead if you manage to split it up it can become feasible and increase the censorship resistance quite a lot
@afilini we understand censorship resistance. NVK took upon himself to do this. We have offered to compensate him. He said no or not now. I get your point but this isn’t intended to be an endeavor for grand pursuit. Calling concern is no better than saying it’s useless. Just chill and let it be. Be civil and respect those who are here.
@hanakookie i still think it's very important to point out potential attack vectors and try to, at least, theorize better alternatives.
i don't want to replace and/or compete with this instance, i'm just trying to think about how we could do better in the future if censorship from isps or cloud providers gets worse
@afilini do better. We practically just made this up 2 yrs ago just because. Pretty good is better than the shitcoin shill fest on twitter, Reddit and all the other places. It’s not that big of a deal really. If it was then 2 yrs ago we would have done it already. And if you want to create another instance so be it. I’ll be there if you like.
@afilini Could you tell me in which way this would be better than, say, all of those anybody*s just running their own instance?
@kekcoin I'd say for starters possibility of redundantly saving all the data for a single virtual "instance." Rather than having users/history black holed and vanish if one goes down.
really what I'm trying to achieve is a way to distribute people who don't run their own instance across multiple smaller instances run by volunteers, making sure that none of them grows to the point where it can't be easily hosted "at home" anymore.
even better if those smaller instances can "look like one" (for the network effect), plus the benefits from replicated data
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!