@xinomilo@todon.nl hey thanks for the concern. Can you provide a resource/link to where & how they do all those things? Yes, we have used deflect.ca before, but the latency was an issue - they don't have edge servers in our servers region. Our isp peers with cf and so it's a direct fiber connection between us and them. For the purposes of public social media cf seems acceptable. If we were hosting secure communication between two parties then we might not choose cf.

@xinomilo@todon.nl we understand the concern around cf decrypting the tls to then re-encrypt w/it's own tls cert. Deflect.ca does the same thing, the difference being deflect.ca is run by friendlies/comrades, but latency of 100 of ms on each request is really noticable and the quality of service would go way down, perhaps impacting adoption rate.


@xinomilo@todon.nl We could go with neither and just run kolektiva without DDoS protection / but we've experienced attacks larger than our upstream bandwidth can handle, mitigation was difficult with a saturated router. With a limited sysadmin volunteer staff of one person who has a full time job, this seems untenable.

Sign in to participate in the conversation

A collective effort to offer federated social media to anarchist collectives and individuals in the fediverse. Registrations are open. Kolektiva.social is made by anarchists and anti-colonialists, for the social movements and for liberation!