all 2 comments

[–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

six) DDOS protection

[–]jamesK_3rd 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

So, I saw your post here when you posted a link. Here is what I have used in the past:

I'm not sure there is a "best". There's definitely better, but you have to look at use case, threat model, etc. Prgmr did lose two of it's devs a few years ago, but I've heard they're still fairly solid, so I'm not sure what is going on.

In addition to the above, I'd also recommend a DIY solution. You can get a business grade internet, I have 150up/150down (you don't have to but then you have low upload speeds and have to deal with not having a permanent IP).

Then, build a server or two and stuff them in your basement or a cool closet. They can then be either mirrors of the front facing websites, or they can host or provide services themselves.

You give up a duck ton of autonomy when you use someone else to house your stuff.

You can run a lot of services on your own server(xmpp or matrix, I run xmpp). Websites, IRC or a closed source alternative like discord. You can run federated Facebook or Twitter like services from your own server as well.

A server in your domicile gives you generally the most protection in the USA from govt entities. Although now, they can hold you or your equipment indefinitely, no one can compel you to unencrypt it, whereas a VPS may or may not comply. Encryption on a VPS has it's own issues.

DDoS is certainly an issue, but I generally think services like Cloudflare etc have generally become gatekeepers when you only fear a DDoS, not other actors. I think that's dangerous.