Seconded. OP, if you can write Markdown, Hugo will turn it into a website.

Go ahead… you can whisper it to me

Opening an office is a completely different thing; there is an enormous difference between offshore contractors and offshore employees. That much, I’ll agree with.

In the US, though, it’s usually cost-driven. When offshore mandates come down, it’s always in terms of getting more people for less cost. However, in most cases, you don’t get more quality code faster by throwing more people at it. It’s very much a case of “9 women making a baby in one month.” Rarely are software problems solved with larger teams; usually, a single, highly skilled programmer will do more for a software project than 5 junior developers.

Not an projects are the same. Sometimes what you do need is a bunch of people. But it’s by far more the exception than the rule, and yet Management (especially in companies where software isn’t the core competency) almost always assumes the opposite.

If you performed a survey in the US, I would bet good money that in the majority of cases the decision to offshore was not made by line managers, but by someone higher in the chain who did not have a software engineering degree.

Thing is, outsourcing never stopped. It’s still going strong, sending jobs to whichever country is cheapest.

India is losing out to Indonesia, to Mexico, and to S American countries.

It’s a really stupid drive to the bottom, and you always get what you pay for. Want a good development team in Bengaluru? It might be cheaper than in the US, but not that much cheaper. Want good developers in Mexico? You can get them, but they’re not the cheapest. And when a company outsources like this, they’ve already admitted they’re willing to sacrifice quality for cost savings, and you - as a manager - won’t be getting those good, more expensive developers. You’ll be getting whoever is cheapest.

It is among the most stupid business practices I’ve had to fight with in my long career, and one of the things I hate the most.

Developers are not cogs. You can’t swap them out like such, and any executive who thinks you can is a fool and an incompetent idiot.

I think Android updates intentionally made the Pixel C slower. It was a noticeable process, up to the point they stopped supporting it. I’d downgrade to an earlier version, but there’s such poor support in Lineage, I’m barely able to run the version that’s on there now.

Such a shame, because it’s still an amazingly beautiful device.

I’m 100% with you. I want a Light Phone with a changeable battery and the ability to run 4 non-standard phone apps that I need to have mobile: OSMAnd, Home Assistant, Gadget Bridge, and Jami. Assuming it has a phone, calculator, calendar, notes, and address book - the bare-bones phone functions - everything else I use on my phone is literally something I can do probably more easily on my laptop, and is nothing I need to be able to do while out and about. If it did that, I would probably never upgrade; my upgrade cycle is on the order of every 4 years or so as is, but if you took off all of the other crap, I’d use my phone less and upgrade less often.

The main issue with phones like the Light Phone is that there are those apps that need to be mobile, and they often aren’t available there.

since all apps are designed to run well on budget phones from 5 years ago, there’s no reason to upgrade.

5 years, maybe, but any more is stretching it. And not getting system upgrades anymore is problematic. Unless you own a particular model of phone, de-Googled Android can be hard to come by.

For example, I have a 7-year old Pixel C. By the time Google stopped using system updates for it, I wasn’t wanting them as every release made the device slower and more unstable. After some effort, I was finally able to install a version of Lineage, which itself has problems including no updates in years. There’s a lot of software that is incompatible with my device, both from Aurora and FDroid.

Android isn’t Linux; Google doesn’t care about maintaining backward compatability on old devices, much less performance, and there’s no army of engineers making sure it is because there’s a served running in walled-up closet no one can find.

Google deprecates features and ABIs in Android, apps update and suddenly aren’t backwards compatible.

5 years, maybe. The entire industry is addicted to users upgrading their phones, and everyone gets a piece of that pie. There’s no actors, except perhaps app developers, who have any interest in keeping old phones running. Telecoms upgrade their wireless network - the internet connection in my 8 y/o car, and half its navigation features, died the day AT&T decided to stop supporting 3G; Phone makers make no money if you don’t buy new phones; and maintaining backwards compatibility costs Google money which they’d rather siphon off to shareholders.

Sure. I’m just saying, I think OP is looking for something that doesn’t require either buying the book again or pirating it.

And I think they want a solution that’ll index audio books, too. An LLM that’ll listen to, transcribed, and index audio books.

It’s listed as the “profile” in the screenshots you’re listing, but that’s the ruleset you’re altering.

I used nft or iptables, and my interaction with ufw has been sparse, and mostly through the UI, because the rulesets the GUI generates are incomprehensible. There should be a command in ufw to report which profile is active.

I’m going to guess this is a dead-end, since you’ve been using the CLI and I have to believe it uses the active profile by default, unless you tell it otherwise. However, in the GUI, if you edit rules in a profile it doesn’t automatically apply to your current ruleset. And if you alter your current ruleset, it doesn’t automatically persist it. So, even if you change a rule on the Home profile, and the Home profile is active, it doesn’t automatically get applied to the running ruleset; you have to take another action to apply it.

Mind you, that’s all through the UI; I’ve never used the ufw command line, so this is (again) probably a red herring. I find ufw to be obtuse at best, because of the Byzantine rulesets it generates.

Are you using the GUI?

Make sure you’re applying them to the active profile.

I use it for everything, but then, I wrote it. All of the desktop secret service tools have desktop dependencies (Gnome’s uses Gnome libraries, KDE’s pulls some KDE libraries) and run through DBUS; since I don’t use a DE, it’s a fair bit of unnecessary bloat. And I don’t like GUI apps that just hang around in the background consuming resources. I open KeePassXC when I need to make changes to the DB, and then I shut it down. Otherwise, it hangs out in my task bar, distracting me.

Rook is for people who want to run on headless systems, or want to minimize resources usage, or don’t use a desktop environment (such as Gnome or KDE), or don’t run DBUS, or don’t run systemd. It’s for people who don’t want a bunch of applications running in the background in their task bar. KeePassXC providing a secret service is great, but it’s overkill if that’s most of what it’s providing for you, most of the time.

I don’t think took is for everyone, or even for most people. It’s for people who like to live mostly in the command line, or even in VTs.

KeePassXC can’t be run in headless mode, and the GUI is tightly coupled to the app. You have to have all of X installed, and have a display running, to run it.

Here’s the runtime dependencies of KeePassXC:

linux-vdso.so.1
libQt5Svg.so.5
libqrencode.so.4
libQt5Concurrent.so.5
libpcsclite.so.1
libargon2.so.1
libQt5Network.so.5
libQt5Widgets.so.5
libbotan-3.so.5
libz.so.1
libminizip.so.1
libQt5DBus.so.5
libusb-1.0.so.0
libQt5X11Extras.so.5
libQt5Gui.so.5
libQt5Core.so.5
libX11.so.6
libstdc++.so.6
libm.so.6
libgcc_s.so.1
libc.so.6
/lib64/ld-linux-x86-64.so.2
libgssapi_krb5.so.2
libproxy.so.1
libssl.so.3
libcrypto.so.3
libbz2.so.1.0
liblzma.so.5
libsqlite3.so.0
libdbus-1.so.3
libudev.so.1
libGL.so.1
libpng16.so.16
libharfbuzz.so.0
libmd4c.so.0
libsystemd.so.0
libdouble-conversion.so.3
libicui18n.so.75
libicuuc.so.75
libpcre2-16.so.0
libzstd.so.1
libglib-2.0.so.0
libxcb.so.1
libkrb5.so.3
libk5crypto.so.3
libcom_err.so.2
libkrb5support.so.0
libkeyutils.so.1
libresolv.so.2
libpxbackend-1.0.so
libgobject-2.0.so.0
libcap.so.2
libGLdispatch.so.0
libGLX.so.0
libfreetype.so.6
libgraphite2.so.3
libicudata.so.75
libpcre2-8.so.0
libXau.so.6
libXdmcp.so.6
libcurl.so.4
libgio-2.0.so.0
libduktape.so.207
libffi.so.8
libbrotlidec.so.1
libnghttp3.so.9
libnghttp2.so.14
libidn2.so.0
libssh2.so.1
libpsl.so.5
libgmodule-2.0.so.0
libmount.so.1
libbrotlicommon.so.1
libunistring.so.5
libblkid.so.1

I don’t know why it links to a systemd library. Here are the runtime dependencies of rook:

linux-vdso.so.1
libresolv.so.2
libc.so.6
/lib64/ld-linux-x86-64.so.2

Don’t get me wrong: KeePassXC is one of my favorite programs. But don’t leave it running all the time, and it can’t be run on headless systems.

This is what recommend as well. The various KeePasses all to pretty good jobs of merging databases, in case of sync conflicts, and you can utterly ignore whether you’re online or not. Plus, there’s a really fantastic tool, written by a veritable genius of a developer, that lets you use a KeePass DB as a secret service on your desktop.

The emojis are something everybody in the family loves, and uses a lot. I don’t know that it’s a complete deal-breaker 🤷‍♂️

I think largely we are aligned on what we are looking for in a platform. The private blog idea is interesting. I normally consider blogs as public, are there private blog platforms?

Sure. If nothing else, you could proxy it through an authenticated endpoint, requiring people to log on to view it. But I don’t know the blogging software space very well - there are probably projects with built-in support for this. I’ve started looking around; I suspect the ideal platform isn’t so much a blogging platform, but it’s designed more around a blog design.

If you come across one, please let me know! I’ll keep updating that CryptoPad document. I also started a spreadsheet, which is better suited to the data than a document table, but CryptoPad doesn’t have the ability to embed assets from other documents (other than images), so I’m just doing the table manually.

On the other hand, projects die when the maintainers lose interest.

Absolutely. Good projects attract multiple maintainers; there’s a bit of Darwinism there. When one project I used was archived, I offered to take over maintainership; the author didn’t want to hand it over to me, so I hard forked it and worked with distributions to replace the no-longer-maintained version with mine. It’s the OSS lifecycle, right? And the best thing about OSS - if the maintained loses interest, someone else can simply take over. And if no-one does, maybe it isn’t worth maintaining.

I would like a platform that I know is going to stick around.

This is so important! Especially for this purpose. Getting several people to join a platform and then put content on it introduces a lot of technical inertia. That’s why it’s important for me to reduce the odds of the project changing their terms of use; increasing costs; moving popular, free features to the “paid” column; and other shenanigans.

On the other hand, something like Zusam, if the maintainer loses interest it will likely also die.

See, I don’t believe this. It’s possible the project would die, but so often have popular projects lost their maintainers, and new people step in. They fork it, or have a peaceful transition of ownership, but the project carries on. Yes, some just disappear into obscurity, but the popular ones tend to keep going, sometimes under other names. X11 to XOrg; OpenOffice to LibreOffice; OwnCloud to NextCloud; so on and so forth. And increasingly, many projects add data migration paths from other projects, especially if they’re popular. Many ActivityPub servers can import Mastodon account data, for instance.

I do have reservations about HumHub, but it’s the first platform I’ve seen that even comes close to being a familiar feel for users.

It does look pretty close to ideal for what we’ve been discussing; I need to install it and try it out, because so far all other options have failed in some way. There’s another forest of options in the blogging style, so I’m still optimistic, but I may try HumHub anyway.

I’m considering the other idea of using Dokuwiki as well, which I guess comes in as being more similar to your blogging idea.

Yeah, that was an interesting avenue; I suspect the user client experience will be where that fails for me. It can’t require any technical expertise.

I agree with you on how core emoji reactions are. … It’s clear I’m going to have to settle in some respect.

So, in thinking about this in more concrete terms (as opposed to vague dissatisfaction), I suspect what we really want is a blogging platform with robust authenticated reader interaction tools.

The issue with AP, and therefore most of these servers, is that (a) it’s expected to be public by default (the privacy point you mention), but almost more fundamentally (b) they’re aggregators. People either to a bunch of people and get a feed of a bunch of posts by different people (Mastodon/X); or they join a community and see a bunch of posts by different people (Lemmy/Reddit).

I think what we want is blogging software, with an endless stream of content posted by a single user, but with reactions and threaded conversations per post. I’ve been thinking how this could be achieved on various AP platforms, but while you can almost get there with groups/channels/communities, the sticking point is that they are all ultimately designed around any member being able to post top-level content. I haven’t seen any system yet that (easily) allows restricting posting by individual accounts.

I need to look at pump.io clients, because I think pump.io started as more of a blogging protocol. And the more I think about it, the more I believe a private blogo is a better foundational model.

Is federation or similar mandatory for you?

No. In fact, I suspect it may work against the privacy requirement. I expect that, even if one of the federated servers met all of the requirements, federation would have to be disabled to prevent leakage. Although, at least one server supports authenticated pull (one of the Misskey forks), I’m guessing it’s not likely that federation will be needed.

As in, do you want something that allows your users to interact with users that are not part of your family and not on your platform, eventually able to completely replace the mainstream social media?

For me, no. I want my SIL to be able to easily post pictures and videos of my toddler niece, and all the family members to be able to oooh and aaaah, and react with little heart and exploding brain emojis, and comment on how the fact that she climbed a jungle gym is a sign she’s sure to be an Olympic athlete. The parents absolutely do not want those videos showing up in TikTok.

Or is a completely closed platform ok, in terms of it’s only your family and friends, and people have to go elsewhere (e.g. back to facebook) to interact with others?

Ideally, it’d support ActivityPub. I’m not sure how; perhaps through the user creating channels and setting a federation flag, or marking it as public. I think the expectation that people will understand that inviting someone from another platform effectively makes all of that content public, might be bit much to assume. So I think having private and public channels, where public channels are federate-able would be fine. But I’d rather not have federation than have a system where people are prone to make privacy mistakes. Is there an option I’m missing?

I use Nextcloud, developed by a company,

Yeessss; I think that’s a little different, because NextCloud was forked off of the completely open source OwnCloud, which was well-established and license protected long before NextCloud came along. If NextCloud tried any shenanigans, they’d be eviscerated. HumHub is a bespoke solution, right? So they can’t be accused of stealing an OpenSource project’s s code.

I use Photoprism, which the base edition is FOSS but they have proprietary extras that you pay for (like HumHub).

Yeah, this is a good example. I use it, too, although I admit I’ve considered, and regularly revisit, alternatives purely because of this quasi-free nature. So much of PhotoPrism is built on free libraries; the project uses something like 120 OSS libraries. How much of their income do you think they contribute to those projects who’s work their taking advantage of?

I use Home Assistant, though I think they recently transitioned to a non-profit

I’ve been using it for two or three years myself; it’s always been OSS & free software, AFAIK.

they charge for a cloud connected component.

That’s a service. I have no issue with charging for a service, because it’s an ongoing cost to the hoster.

Actually, I don’t have any issue with anyone charging for their software, either; it’s just that I won’t use it, and I don’t trust quasi-free projects. That’s just from experience. Most end badly, either by being bought out and going totally commercial, or just slow enshittification for the non-paying customers.

I write software for myself, and give it away free because it costs me nothing to do so. And I’ve written software libraries that I know, for a fact, are being used as backbone code for a not insignificant chunk of the internet. I’ve never been paid by any commercial company taking advantage of my work, and have little sympathy for people charging for software that’s 90% other people’s freely given code. Which is most software today. You write the entire stack from scratch, including the compiler, like Excel once was? Hell yeah, you deserve to charge for it. Otherwise, you’re just profiting off other people’s work.

HumHub have been around 10 years, so they aren’t exactly new. Plus as it’s extendable, perhaps one day a gfycat or emoji reaction plugin will be added (or if you have the skills, maybe you could make one).

Huh. Never heard of them before a week or so ago. I wouldn’t completely discount them because of the semi-free model; I just am putting them down on the list.

Thirded.

They occasionally upgrade services for free, and rarely raise prices. They support a variety of base Linux images, including Arch (which, when I first switched to them, was rare). The control board is functional, and they’ve got all the features needed to implement VPN subnets, DKIM, etc. without having to use the DNS provider’s tools (assuming you are using a different provider). There’s also a command-line tool for managing your VPSes with them. Reasonably priced, the usual array of options from cheap to expensive, easy to add resources, and so on. Servers in the US and Germany (and maybe others? I haven’t added a VPS in a while).

When I first started self-hosting, not all of this was standard. I can’t say I’ve looked at the market in a few years, so perhaps their offerings are standard now, but when I moved from another hosting provider, Contabo stood out. I have been quite happy; perhaps the best thing I can say about them is that I haven’t had to contact their technical support in the past couple of years.

P.S. the only cautionary thing I’ll say it’s that they’re a German company. While you can never trust any VPS provider from a data security POV, Germany is a 5-eyes country, and so sits in my “least trustworthy” list; as in, they’re least likely to put up any resistance if one of the surveillance states asks for access to your data, or to tell you about it before they do. For me, this doesn’t matter, and frankly I don’t have enough knowledge to choose a better option if I needed it. Since I don’t, and since I’m not using my servers for anything that’s currently considered subversive, it isn’t yet a worry for me. But FYI.

Thanks!

Agreed: some items are basic functionality that should reliably and easily work. Image & video uploading are among them. I’ll add some verbiage on the CryptoPad page about options which have been rejected simply because they don’t support the most basic features.

It’s funny: I’ve been similarly searching for a good chat platform, and there are two things which I personally don’t care much about, but which a couple of my family members are insistent about: typing notifications; and gifs - as in, a widget where you can search for short gifs from e.g. Gfycat and have them inserted. My wife absolutely requires the latter.

That being said, my position on emoji responses are almost a core feature for a social media platform IMO. They’re fast, easy, non-cluttering feedback, eliminating the need to type out some inane, two-word response. It’s infuriating (to me) that Lemmy doesn’t support them; it leads to such illuminating responses as “So much this!”, “Yes!”, but worst of all the lack subverts up/downvotes, which should be a tool for designating interest, not agreement. Not having emoji reactions muddies and dilutes any value voting has.

Pixelfed is an interesting suggestion. It always feels like it’s intended to be public. Were you thinking each user would have to configure default privacy settings?

You may be right. I think I read that post visibility was configurable; if I can narrow the field sufficiently I’ll start installing them and checking how they work. I do think federation would have to be disabled on any AP server.

I can see how to restrict to followers but haven’t yet found how to stop anyone being able to follow you.

Yeah, that would be a blocker.

I think for me, if a new user has to set up the privacy settings to stop them posting everything public, that’s probably not the right platform.

Agreed. The service must be at least configurable to be private-by-default.

BTW there is PixelDroid as a dedicated Pixelfed app, but it’s only on Fdroid.

I think I found an iOS app, too… but I looked at so many servers last night I may be misremembering.

The table isn’t rendering on my mobility client, so I’m going to delete it from the post; I’ll keep the CryptoPad document going as long as I can, but it’s open edit, and I’m hoping others will contribute to it.