The usual way for me is to give certbot write access to a directory in the HTTP root, so the server can keep running.

For internal stuff, it may be easier to set up your own CA.

Windows 98 had god usability. The buttons and controls all had borders, so you could know where they are. In Windows 11, everything is flat, nothing has a border, so you can never know where the interactive area is.

It would be a more meaningful discussion if the government wasn’t controlled so much by large corporations and oligarchs.

I have self hosted my email since 2006. I gave up on self hosting outgoing mail in 2021, but I still keep the server up for incoming mail, and still set up throwaway accounts on there.

The hard part of hosting email is getting Google and Microsoft to accept outgoing mail. Tons of businesses that do not have visibly “outlook.com” or “gmail.com” addresses are still hosted by those servers.

I had SPF, DKIM, and a static datacenter IP address with no reputation problems. I still couldn’t get through to Microsoft, not even in people’s junk mail directory, until they manually whitelisted my address. Microsoft didn’t allow them to whitelist a whole domain. Google was a little easier, but they added new demands monthly.

In 2025, I can’t get reliable delivery to gmail.com addresses even sending from a hotmail.com address in the outlook.com web interface.

Not sure how much you’re paying for your VPN, but a virtual private server can be had for about $5 per month. You’ll get a real IPv4 address just for you, so you won’t have to use non-standard port numbers. (You can also use the VPS as a self-hosted VPN or proxy.)

$5 per month doesn’t get you much processing power, but it gets you plenty of bandwidth. You could self-host your server on your home computer, and reverse-proxy through your NAT using the VPS.

Cloudflare has IP banned me before for no reason (no proxy, no VPN, residential ISP with no bot traffic). They’ve switched their captcha system a few times, and some years it’s easy, some years it’s impossible.

sgt-puzzles. Simon Tatham’s Portable Puzzle collection.

Contains a bunch of simple puzzles, of the minesweeper and sudoku style. Loopy is my favorite.

Available for Linux, Windows, MacOS, Android, and anything with a web browser and a mouse. Packaged in Debian and F-droid, and probably many other places.

I like it for time wasting in lines at the DMV, for a low-stakes game when anxious, and for falling asleep.

X11 has effectively already been deprecated for years, seeing little to no development on it. No one should be surprised.

X11 is complete.

Wayland is incomplete, and is missing essential features like accessibility and automation (ydotool will never have half the features xdotool has).

Mozilla, for example, would sign Firefox’s flatpak with a PGP key that they would disclose on their website. You verify the signature using the RSA algorithm (or any other algorithm for digital signatures. There are a bunch.) Or, you could just trust that your connection wasn’t tampered the first time, then you would have the public key, and it would verify each time that the package came from that same person. Currently, you have to trust every time that your connection isn’t tampered.

Major flatpak providers (Flathub at the very least) would include their PGP public key in the flatpak software repo, and operating system vendors would distribute that key in the flatpak infrastructure for their operating system, which itself is signed by the operating system’s key.

Article doesn’t mention my biggest problem with flatpaks, that the packages are not digitally signed. All major Linux distros sign their packages, and flathub should too. I would prefer to see digital signatures from both flathub and the package’s maintainer. I don’t believe flathub has either one currently.

This survey doesn’t distinguish between levels of cloud service provider, so I was a little confused.

Virtual private servers, cloud virtual servers (like AWS), cloud-based software where you provide code or a program and the cloud system runs it on a server of its choosing, and cloud-based systems where someone else provides the software (like Google Docs).

I like git add because then you can do git diff --staged

When I worked on OpenStack for a few years, 80% of the bugs I fixed were type errors that could have been prevented by Python being staticly typed.

Jellyfin depends on proprietary Microsoft .NET, even on Linux.

It’s still better than Plex and Emby, which are fully proprietary, and have no source code. But I will stick with sshfs with kodi, and nginx plus mpv for now.

One time I was getting estimates for server software for an embedded device I had made. In a teleconference, I told one company that our prototype server ran on nginx. They emailed us an estimate saying we had to switch our embedded system to Windows 10 IoT Enterprise, and put the server on Microsoft’s cloud, because “Engine X is not an enterprise web server.”

I think that wormhole.app page is different software from magic wormhole (and warp). It just has a similar name. wormhole.app does appear to be proprietary.

Thanks. I think I found its homepage, is it the same as this? That looks like part of Gnome, so should be open source too. (It’s maybe available in your operating system without needing a flatpak, if you would prefer it that way)

I’m not familiar with warp, and couldn’t find it with a search. But I did find magic wormhole, and it appears to be MIT licensed, so it is open source. I also searched packages.debian.org and found it, so definitely open source.

As for firewalls: it might only block incoming connections, or has an exception for LAN hosts. I’d have to see the configuration to say more.

No. Check my previous comment – this is about hosting on your home ISP, and turning that on or off directly affected the blocking. There is no way to host a webserver through any commercial VPN service.