New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
What alternatives have you found to Cloudflare exactly? I would love to replace it with something more private as much as you.
As for Tor, Servury works over Tor just fine, we have a .onion and an I2P mirror.
The ability to choose between IPv4 and IPv6 and how many of each is coming soon, this feature will be available on the budget plans I talked about.
I personally use a modest ThinkPad T480 (Released in 2018) (libreboot debian btw) to operate Servury and I'm not experiencing any slowdowns.
You can try Bunny (aff/non-aff).
I like the no accounts, Tor .onion site, and one day servers. I do not like your monthly rates, those are very high compared to LET BF annual offers.
Well we don't actually proxy traffic through Cloudflare, we only use Cloudflare Turnstile, but I just did some research and I found Altcha, I'll be implementing it today.
I'm racking some servers in Montreal this week to offer budget friendly plans like I said. Stay tuned.
I haven't used Cloudflare or anything similar with SporeStack. Back when SporeStack's backend was hosted on Vultr, I had it fairly proxied (you were never talking directly with the API node.) I did have DDoS mitigation turned on with the proxies, but never noticed anything. Now it's just one VPS on Slow Servers. I will probably setup a failover VPS, but serious attacks have never been a problem. And anything to do with mass invoice creation, etc, I've been able to just tune out. So it still is a denial of service attack if someone exceeds my unpaid invoice threshold (for brand new tokens) -- but I cap the limit, the attacker goes away, and people make invoices again.
One thing I do is I make invoices go away faster if unpaid than paid. And I could tune that as well, to be shorter lived or longer lived.
It is possible to have stateless invoices as well, that only provision once a payment is made (and an endpoint is polled.) I used to have it like that. I'm not sure if that would work with an external payment processor.
As far as tokens go, you can also wait to put them in your database till there's a payment. A token can just be a unique identifier that it always valid, can be generated client side, or assigned after the first invoice.
Of course allowing small payment invoices attracts a lot of abuse! I used to have it so that you could pay in Bitcoin and get a server directly without a token step, but it attracted too many issues. I've settled, for now, on a $100 buy-in. When it was $25 the abuse flooded in a lot faster.
Now if SporeStack gets attacked with a million packet per second flood, things will go down I just figure after 9 years of no trouble, I'll deal with it if I encounter it.
Oh, my bad. I see!
Very nice!
My laptop is about a decade older than that, or very nearly
. The T480 is nice, but it's a shame they don't have a barrel charging port.
I don't even proxy traffic through Cloudflare currently - I only use their turnstile, but - and I'm very proud of this - I'm migrating to self-hosted Altcha as we speak. Should be up and running by the end of the day.
The moment I saw it was possible to set the proof-of-work algo to Argon2id, I knew I had to give it a try - at least I know for sure it would be computationally expensive to spam create tickets / new accounts, as for actual DDoS - I think it's pretty much impossible to truly prevent it without proxying traffic through Cloudflare or Bunny - unless I would have a comical amount of bandwidth - which would subsequently allow the site to handle DDoS attacks AKA being my own Cloudflare/Bunny.
As far as abuse goes on Servury - I auto-suspend servers which are responsible for abuse reports (I only treat requests from important authorities) and I have never had any complaints from users - nor have I ever had any IPs blacklisted.
What's keeping you from getting an upgrade?
What's wrong with USB-C charging?
Though it's slow, it's adequate. The CFFL backlit screen seems easier on the eyes, at least compared to early LED backlit, like the X230. I was using the X230 for a while, but the screen flicker is really bad. Many sites are still plenty fast, I just notice it on the ones that are heavier.
The problem with the T-480 is that the USB-C port is part of the motherboard. It's a much flimsier connector, so it'll break eventually and make it useless without a new motherboard. The barrel connectors are much more robust, and I don't see any reason to require a data format with charging.
That said, type C is convenient and cool to be able to plug a phone into the same charger.
I think the T-470 doesn't have type C, and might have a good screen. Maybe one day.
I'd like to "re-reply" to your suggestions, because I believe I've fixed/implemented all of them.
I'm still working on improving the light mode, though I might remove it entirely.
I'm also going to push out a no-JS version of the site in the coming days.
As for AI slop, can you specify exactly what? Are you talking about the AI-generated blog post images? If that's the case, sure, I'll remove them.
Those were really good suggestions and I would love to hear more from you.
This is actually a brilliant idea, I understand it's for Servury but this is a brilliant idea that could be easily adapted with some tinkering, which is strange seeing how Mobile providers do this for years..
Give more than 5 Mbps. If you would otherwise have done unmetered, then just downgrade to a lower (but still adequate) speed. Some people might be totally fine with 100 Mbps and don't need to burst higher, so please give an option for, say, 1 Gbps @ 5 TB/month then downgrade to 100 Mbps unmetered. Because if you offered fair-use unmetered or guaranteed unmetered at 100 Mbps, I'd definitely consider buying, but I wouldn't buy if you offered 1 Gbps @ 5 TB/month then 5 Mbps.
@servury Your ToS is internally inconsistent. You say that you can use the service for any lawful purpose, but then state that the service will be terminated without refund for legal activities. For example, as written, your ToS would imply that it's fine to run a Tor exit relay. After all, that is legal, and you do say that "VPN and privacy tools" are allowed.
However, you also say that abuse reports from your upstreams will result in immediate service termination, and Tor exits result in abuse reports. As exits are legal, usually all you need to do is reply to the report stating that the service is an exit and that you are operating as a transit provider and reiterating that neither you nor your customer are legally responsible for any traffic being relayed. There are cases where a notice is valid yet you don't have to do anything but respond.
Some other miscellaneous suggestions about your website:
Some suggestions about your VPSes themselves:
Also, some links are broken on your onion domain (which seems to redirect to a login, not the real homepage?). For example, http://rvuhm67rersmdqxahljuznmth37aeghwyjxp4tbyxbm75wydhkdqwkyd.onion/privacy/ which is linked directly.
OK. It should be possible to run Tor exit nodes with the new hardware I'll have in Montreal next week. The new servers are racked and everything - but I'm working on a new, enhanced version of the site which should work with Tor Browser's maximum security level, currently called Servury Lite, it can be accessed via https://servury.com/lite/ or by simply adding /lite/ at the end of the onion / i2p domain.
It is currently very minimal, but it's a work in progress.
As I said before, there will be budget VPS options available on the Montreal servers. IPv6 only, etc.
I've written down the suggestions you wrote, I think they're great ideas. As for the broken onion link, the issue is fixed, it has to do with the lite version of the site being in active development and sort of in a "beta" state.