Comment on Self-hosting in 2025 isn't about privacy anymore - it's about building resistance infrastructure
merc@sh.itjust.works 1 week ago
Communication that can’t be shut down: Matrix, Mastodon, email servers you control
Uh, those can all be shut down. You may control the server but you don’t control the datacenter the email server lives in, unless you’re hosting out of your house, which is a bad idea. You also don’t control the pipes to and from these servers. There have been many plans over the years requiring that ISPs ban users who are accused of copyright infringement. And, even if you don’t infringe copyrights, we all know about how the DMCA can be weaponized against people who have done nothing wrong.
File storage that can’t be subpoenaed: Nextcloud, Syncthing
Sorry, your own file storage can be subpoenaed, you just don’t have a lawyer on call to help you through the process. If you think “haha, I’ll just delete the data”, you can be in much worse trouble. AFAIK in some cases the judge / jury are allowed to assume that evidence that you deleted was incriminating.
I self-host things and think it’s a good idea. But, don’t go overboard with how good it is. It’s still vulnerable to government and corporate actions. in many cases you’re more vulnerable because you’re on your own, you probably don’t have a lawyer on retainer, etc.
rmrf@lemmy.ml 1 week ago
I am not your lawyer and this is not legal advice for you or anyone who reads this.
Nextcloud encrypts data e2e, so your point there is misguided and not really relevant. You can’t be compelled to provide a password/decryption key as long as it doesn’t exist as physical evidence. This is why lawyers advise clients to use a PIN instead of face ID or fingerprints; biometrics, like all physical evidence, can be subpoenad.
Self hosting services like matrix or email is a bad idea if you don’t really understand what you’re doing, like many other things. If you keep you stuff updated and are intelligent in how you structure your network there’s not really anymore risk here than paying someone else to host it. If you keep you stack simple and follow best practices, code and configurations written by industry experts do most of the heavy lifting.
merc@sh.itjust.works 6 days ago
That’s because cops don’t need a warrant if you use a face or fingerprints, but they do if you use a PIN. What you’re talking about is for protection against casual, warrantless searches.
What I’m talking about is a subpoena where you’re required to present evidence. The fact that it’s encrypted is irrelevant. If the data is subject to a subpoena it doesn’t matter if you store it encrypted or unencrypted, you’re still required to present it to the court.
Keeping stuff updated is a chore, and it can take hours out of your week, often when you don’t expect it or don’t have time. When that’s someone’s full time job and they’re updating it for hundreds, thousands or millions or people, there’s a better chance they do it right, and a much better chance that they do it in a timely fashion.
I hope you’re not anybody’s lawyer, with your lack of knowledge of the law. Did you graduate from Dunning-Kruger law school?
rmrf@lemmy.ml 6 days ago
merc@sh.itjust.works 6 days ago
k