They are license-agnostic, I'd say. They focus on security. The press release in full: As part of the project on “Code Analysis of Open Source Software” (CAOS 2.0), the German Federal Office for Information Security (BSI) has examined the security features of the Matrix communication software and the Mastodon social media micro-blogging software. In most cases, cyber attacks can be traced back to errors in the program code of the affected applications. The CAOS project helps to identify and eliminate common vulnerabilities and risks. The BSI worked with mgm security partners GmbH to check the source code of the Matrix communication software and the Mastodon social media micro blogging software for possible defects. The BSI immediately notified the affected developers of critical vulnerabilities. They analyzed the vulnerabilities and have already responded. Further deficiencies were addressed as part of a responsible disclosure procedure. The results that have now been published are a combination of source code review, dynamic analysis, and interface analysis in the areas of network interfaces, protocols, and standards. In cooperation with mgm security partners GmbH, the BSI launched the “Code Analysis of Open Source Software” (CAOS) project in 2021. The project's task is to analyze vulnerabilities with the aim of increasing the security of open source software. The project is intended to support developers in creating secure software applications and to increase trust in open source software. The focus is on applications that are increasingly used by public authorities or private users. This new publication is the results of the follow-up project “Code Analysis of Open Source Software” (CAOS 2.0). Further code analyses are planned to increase the security of open source software in the future. The project on “Code Analysis of Open Source Software” will be continued under the name CAOS 3.0. The results will also be published on the BSI website after a responsible disclosure procedure. This procedure allows developers a reasonable period of time to fix security vulnerabilities before they are published.*

"We also don’t believe that a large corporation that is joining in as late should be the one defining the iconography for the fediverse." `Right on! I'm going to use this in my own instance.

I’m going with both suggestions by setting up rpi nas and stashing it somewhere out of sight. I can use syncthing to sync the media in case SMB share doesn’t work. It shouldn’t affect my internet speeds if it’s on the same network I think. I changed the format to h265 instead of h264 and played with the bitrate a bit. I’m still trying to find the image-quality-to-file-size sweet spot. I was thinking of using LUKS to encrypt the CR server, but I read that you would have to manually type the key each time the machine is restarted which wouldn’t be ideal since it’s at work and I usually run the manual reboots at night. I moved all the apps with sensitive info to another Cloudron just to be safe. The windows machine with blueiris has bitlocker turned on so I’m set on that front. I also got a UPS from Costco in case electricity is out and I have a non-BI backup security camera running as an extra precaution.

@amoslipara this is a Cloudron forum . Not a Minecraft forum or a Linux help forum. Did you intend to post it here?

@humptydumpty said in What's The Best Backup Solution Provider For Cloudron?: @jdaviescoates it’s nice not to have all your eggs in the same basket. I didn’t consider that you didn’t have to have the vps with hetzner to use the storage box. I do actually have a dedicated server with hetzner too, but it is at least at a different location. Still, looking forward to being able to have multiple backup locations so I can spread those eggs around! The storage box needs remounting after a CR update, right? That does seem to happen, yes. At least with the CIFS mount that I think I'm still using.

For just the Mind Mapping aspect, this WiseMapping looks pretty good: https://forum.cloudron.io/topic/12024/wisemapping AppFlowly looks promising for a Knowledge Base: https://forum.cloudron.io/topic/6088/appflowy

Maybe I'm not seeing the big picture here, but we should let them continue using those free domains for spam, that way we can simply blacklist the TLD entirely. That's 60% less phishing emails right there.

Yes, that was another can of worms (https://forum.cloudron.io/topic/12112/email-smtp-connection-closed/16?_=1721229448552). They thought the Hetzner IP (US server) was from iran and had it blocked causing the SMTP issue. I had to reassign new IP to the server and SMTP is working now. On my third attempt, I got one that's not blacklisted anywhere (yet). edit: tying up loose ends by adding link

@humptydumpty You have to remember that 99% of providers have the login ‘root’, according to me the only provider I tested was OVH they have ‘ubuntu’. As for SSH security, I recommend to disable the password login, only with the key. Another option is to restrict in the Firewall in the Hetzner panel port 22 to your home internet IP address

I'm signed up. Not banned yet

@aessen I'm interested in giving SPN/Portmaster another go. Did you end up making that video?

I update IPdeny lists (in order to block certain countries) with @imc67 script, see https://forum.cloudron.io/topic/3795/firewall-spamassassin-automatic-list-update?page=3 It's not state-of-the-art security, but the spam and mail server abuse attempts have dropped significantly.

@dsp76 https://blog.dnsimple.com/2014/01/why-alias-record/ is where I learnt about it first

Black Mirror: https://x.com/elonmusk/status/1792690964672450971

@girish He likes running services like this so people can maintain anonymity when visiting popular online services. It is a calling of his. He stays abreast of what Free Software alternatives are available for sites like Youtube and then runs them on his (quite beefy) servers.