blue_berry

joined 1 year ago
[–] blue_berry@feddit.de 2 points 9 months ago (1 children)
[–] blue_berry@feddit.de 3 points 9 months ago

Thanks. It was due to me using a wrong port. Its working now.

Sorry for the inconvinience

 

Hello again,

thanks to your great feedback last time, I set up SSL with letsencrypt and got HTTPS working.

However, federation is still not working.

When troubleshooting as described in the docs I get the following Bad-Gateway error:

"~# curl -H "Accept: application/activity+json" https:///u/blueberry

So apparently, its again the reverse-proxy, but this time, its not able to speak to the backend.

My nginx-error-file shows the following error: "2024/02/08 12:37:46 [error]: connect() failed (111: Connection refused) while connecting to upstream, client: , server: , request: "GET /u/blueberry HTTP/2.0", upstream: "http://0.0.0.0:8536/u/blueberry", host: "

But using "docker ps" I find port 8536 open, so it should work.

Do you have any idea whats the problem here?

[–] blue_berry@feddit.de 1 points 9 months ago

Yes, also occures without the header. But I think I know the problem now: I tried to use the certificate of my host provider, which seems not to work for federation

[–] blue_berry@feddit.de 2 points 9 months ago* (last edited 9 months ago) (2 children)

Ok, yeah, I'm using a certiciate of my domain provider. Maybe that's the problem ... thanks! I will try to do it with letsencrypt/acme

[–] blue_berry@feddit.de 1 points 9 months ago

Or do you know a similar post maybe?

 

I hope this is the right place for this.

So, here is the thing: my lemmy instance is accessible in the browser via its domain, everything is fine, but no other communities are shown. When I test federation with "curl -H "Accept: application/activity+json" https://my-instance.com/u/some-local-user" I get a SSL certificate error.

So I figured that it has something to do with my reverse proxy and modified the nginx.conf like described in the documentation.

But the error persists.

This is my nginx.config in /etc/nginx/sites-enables/:

" limit_req_zone $binary_remote_addr zone={{ my_domain }}_ratelimit:10m rate=1r/s;

server { listen 80; listen [::]:80; server_name {{ my_domain }}; # Hide nginx version server_tokens off; location / { return 301 https://$host$request_uri; } }

server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name {{ my_domain }};

# Replace these lines with your own certificate and key paths
ssl_certificate /etc/ssl/certs/{{ my_certs }};
ssl_certificate_key /etc/ssl/certs/{{ my_keys }};

ssl_protocols TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers {{ cipher_encrypt }};
ssl_session_timeout  10m;
ssl_session_cache shared:SSL:10m;
ssl_session_tickets on;
ssl_stapling on;
ssl_stapling_verify on;

# Hide nginx version
server_tokens off;

# Upload limit, relevant for pictrs
client_max_body_size 20M;

# Enable compression for JS/CSS/HTML bundle, for improved client load times.
gzip on;
gzip_types text/css application/javascript image/svg+xml;
gzip_vary on;

# Various content security headers
add_header Referrer-Policy "same-origin";
add_header X-Content-Type-Options "nosniff";
add_header X-Frame-Options "DENY";
add_header X-XSS-Protection "1; mode=block";

#location / {
#  proxy_pass http://0.0.0.0:1236;
#  proxy_http_version 1.1;
#  proxy_set_header Upgrade $http_upgrade;
#  proxy_set_header Connection "upgrade";
#  proxy_set_header X-Real-IP $remote_addr;
#  proxy_set_header Host $host;
#  proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#}


location / {
  set $proxy_pass "http://0.0.0.0:1236";
  if ($http_accept = "application/activity+json") {
      set $proxy_pass "http://0.0.0.0:8536";
  }
  if ($http_accept = "application/ld+json; profile=\"https://www.w3.org/ns/activitystreams\"") {
      set $proxy_pass "http://0.0.0.0:8536";
  }
  proxy_pass $proxy_pass;
  proxy_http_version 1.1;
  proxy_set_header Upgrade $http_upgrade;
  proxy_set_header Connection "upgrade";
  proxy_set_header X-Real-IP $remote_addr;
  proxy_set_header Host $host;
  proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

}

access_log /var/log/nginx/access.log combined;

"(end of file)

Maybe, someone has an idea how to solve this. I'm really at the end of my wits here :(

 

cross-posted from: https://feddit.de/post/6792877

TL;DR: The current Mastodon-signup is only removing the confusion of users on first glance, because it either hides the server-choice altogether, or leaves them with a choice that is impossible to make at this point of their Mastodon-journey. Instead, it should introduce them to decentrality on a lower scale, with a handful of handpicked servers to choose from, such that the decision makes sense to them and shows them the merits and fun of the concept instead of scaring them away. Ideal would be to give them a sense of agency. Then, chances are higher that they consider migrating again in the future and eventually internalize it as a permanent option of the digital world.

 

TL;DR: The current Mastodon-signup is only removing the confusion of users on first glance, because it either hides the server-choice altogether, or leaves them with a choice that is impossible to make at this point of their Mastodon-journey. Instead, it should introduce them to decentrality on a lower scale, with a handful of handpicked servers to choose from, such that the decision makes sense to them and shows them the merits and fun of the concept instead of scaring them away. Ideal would be to give them a sense of agency. Then, chances are higher that they consider migrating again in the future and eventually internalize it as a permanent option of the digital world.

[–] blue_berry@feddit.de 1 points 11 months ago* (last edited 11 months ago)

Sure no pressure!

[–] blue_berry@feddit.de 1 points 11 months ago* (last edited 11 months ago)

You are right, it could be read that way from the title. But from the content it becomes pretty clear that the section of the universe called the "Open Web" was deserted in this world decades ago and no one is there.

[–] blue_berry@feddit.de 2 points 11 months ago (2 children)

Thanks. So nice to hear some feedback <3

You are right about the story. I crafted the whole thing a bit more hasty than the last ones. It should be longer and have an actual story and maybe some new characters. I also need to improve my writing. I tried a more playful style for this one, because its adventerous and so on, but its too inconsistent.

I'm thinking about extending and re-writing it, but am not sure if I will find the time. Thanks anyways :)

[–] blue_berry@feddit.de 1 points 11 months ago* (last edited 11 months ago)

Ok, I see. To be honest, I didn't put as much thought in this than in the last stories. Maybe it would have worked if it was longer ... I will think about it! Thanks anyway for the feedback.

And it isn’t very Solarpunkish 😉

the use of “open web” etc makes it too up front as well

That's true. But otherwise, I don't think the idea would have come across

Well yes, but Solarpunk also supported dezentrality 😇

the use of “open web” etc makes it too up front as well

[–] blue_berry@feddit.de 1 points 11 months ago (2 children)

Its meant in the sense: better build communities in the fediverse rather than on Mars. Its a pun on "Colonize Mars"

19
Colonize the Open Web (fungiverse.wordpress.com)
 

cross-posted from: https://feddit.de/post/6258115

New story, I hope you like it. Feedback always welcome.

 

cross-posted from: https://feddit.de/post/6258115

New story, I hope you like it. Feedback always welcome.

8
Colonize the Open Web (fungiverse.wordpress.com)
 

New story, I hope you like it. Feedback always welcome.

[–] blue_berry@feddit.de 1 points 1 year ago

Yeah its kind of amazing :) (Although I think the story also is kind of universal)

PS: The similarity was noted before, check this out: https://www.cnet.com/tech/services-and-software/this-crazy-japanese-film-just-blew-away-twitters-tweet-record/

"Twitter revealed a new tweet-per-second record on Friday and it seems the 143,199 tweets-per-second milestone was triggered by the airing of a Japanese animated film. [...] In the film, the protagonists send the city's airborne fortress tumbling out of the sky with the magic word, "balus" which roughly translates to "destruction." [...] So strong is the pull of "Laputa" -- even apart from the Ghibli Rule--that during the last airing on Dec. 9, 2011, Twitter logged a then-record-breaking 25,088 tweets per second of fans posting "balus'' at the same time it was spoken during the movie--despite a public plea from the social-networking site to hold off."

  • Donna Tam, CNET 16/08/2013

I think Twitter always in a way tried to be the castle in the sky. Also, I think people just found it fun to mess with it.

[–] blue_berry@feddit.de 1 points 1 year ago (1 children)

Ok, you're starting to convince me. I still think some of his works are great solar punk even though maybe he didn't intented them to be ...

view more: next ›