@admin , a quick question...., why cloudflare?
they break most of your own code of conduct stuff.. (proxy data to nsa/gov, assisting nazis/dictators/oppressive regimes..), advocating surveillance state....

if ddos protection is important to you, have you ever looked at deflect.ca?

just being curious about it...

@xinomilo hey thanks for the concern. Can you provide a resource/link to where & how they do all those things? Yes, we have used deflect.ca before, but the latency was an issue - they don't have edge servers in our servers region. Our isp peers with cf and so it's a direct fiber connection between us and them. For the purposes of public social media cf seems acceptable. If we were hosting secure communication between two parties then we might not choose cf.

@xinomilo we understand the concern around cf decrypting the tls to then re-encrypt w/it's own tls cert. Deflect.ca does the same thing, the difference being deflect.ca is run by friendlies/comrades, but latency of 100 of ms on each request is really noticable and the quality of service would go way down, perhaps impacting adoption rate.

Follow

@xinomilo We could go with neither and just run kolektiva without DDoS protection / but we've experienced attacks larger than our upstream bandwidth can handle, mitigation was difficult with a saturated router. With a limited sysadmin volunteer staff of one person who has a full time job, this seems untenable.

Sign in to participate in the conversation
kolektiva.social

A collective effort to offer federated social media to anarchist collectives and individuals in the fediverse. Registrations are open. Kolektiva.social is made by anarchists and anti-colonialists, for the social movements and for liberation!