wraith

joined 1 month ago
sorted by: new top controversial old
Conclave politics begin with the question: Continue Pope Francis' radical legacy or change course? in c/world@lemmy.world
[–] wraith@lemmy.ca 1 points 7 hours ago

Speaking as a former Catholic, I honestly believe being more conservative will make the church more relevant. I'm not saying that's a good thing, to be clear, but we see what is happening to more liberal Christian denominations universally--they're rapidly declining. There are a number of reasons why that is, but liberal theology failing to retain members is a component there.

I think the most relevant issue the Church can bring to bear today is one that conservative and liberal Catholics alike tend to agree on. Even the most hard-line trad priests and laity I knew had a visceral hatred for laizez-faire capitalism (and often capitalism at large) and the commodification of the human experience. Pope Francis gave voice to it, and the next pope must follow suit. If he doesn't, regardless of theology, the church is doomed.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 1 points 1 week ago (1 children)

I haven't set up the VPN yet. I am getting as much info as I can before I start any work. For the sake of this discussion, it would be a box on my network.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 1 points 1 week ago (3 children)

So I should just host it with an IP address instead of using the domain?

I hadn't thought to do that, at least not for anything other than short lived internal-network-only projects and tests. An IT guy in the company I work for advised me to just get a domain and host with it/subdomains to make it easier to manage if I wanted to host multiple services.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 1 points 1 week ago (5 children)

I will need it to be available via a VPN or other means, but it's not going to be any more public-facing than it has to be.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 1 points 1 week ago

I think you meant to reply to me! I actually do need it to be accessible externally, via a VPN or other means.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 1 points 1 week ago (1 children)

I am fairly new to self hosting and just wanted to know if this was a big enough deal that I should just get a domain that doesn't require HSTS preload. It's one thing to tinker with an IP address on a local network for some unimportant project; it's just intimidating to try it for real using a domain and hosting my own data.

I'm just a little nervous tbh. Thanks for the help!

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 6 points 1 week ago (7 children)

Google requires HSTS preload for all of their domains. Charleston Road Registry (their subsidiary), enforces this by adding the TLD to the HSTS preload list.

Here is the Wikipedia link to the TLD. It's at the bottom.

Self hosting and HSTS preload domains in c/selfhosted@lemmy.world
[–] wraith@lemmy.ca 2 points 1 week ago* (last edited 1 week ago) (3 children)

Google is the registry that owns the rights to the TLD. They require all of the domains they control to have HSTS preload enabled.

22
Self hosting and HSTS preload domains (lemmy.ca)
submitted 1 week ago* (last edited 1 week ago) by wraith@lemmy.ca to c/selfhosted@lemmy.world
21 comments fedilink
 

I have a domain that requires HSTS preload. I want to self host a few things using that domain (and subdomains), like nextcloud, pihole, and vaultwarden. How much of an issue is HSTS preload going to be if I do that? Will I need to set up a wildcard cert for everything? Or will it just work™️ because it's internal or traffic is through a VPN?

I can't find much about this so any help would be appreciated!