I’ve self hosted long before the privacy/subscription nightmare of modern cloud/SaaS platforms was a thing. I do it because I enjoy it (and at the time I got started, I had crap internet so having good local services like offline Wikipedia was important).
Not everyone has to self-host. I run lots of services, mostly for myself, but friends and family who don’t know a kernel driver from a school bus driver also use them. So the expectation that everyone self host is and always has been “pie in the sky”. And that’s okay.
Privacy regulations are all fine and dandy, but even with the strictest ones in place, you still do not own or control your data. You’re still subscribing to services instead of owning software. You can’t extend, modify, or customize hosted software. Self hosting FOSS applications addresses all of those.
So rather than expect everyone to self-host, we should be working towards communities offering services to one another, pooling resources, and letting those interoperate with each other.
To make fun of an old moral panic in the 90s: “It’s 11pm. Do you know where your data is?” Yep, it’s down the street in Matt’s house.
I can and do self host, but I’m not willing to provide these services for free. I don’t want to be responsible for other peoples passwords or family photos.
Thats where good, privacy-respecting services come into play. Instead of hosting for my neighbours, I would recommend mailbox.org, bitwarden, ente or a hosted nextcloud.
For me, I only let people I know use them (friends and family) with the exception of my Lemmy instance, of course (and even that’s not wide open to the world).
I’d be running these for myself whether anyone else used them or not. Unless I’m hosting for hundreds of people, the cost to run these services is the same as it is just for myself. Granted, I don’t have people gaming the system trying to backup their entire PCs to their email inbox or Nextcloud, but that’s where the trust factor (and storage quotas) comes in.
As far as being responsible for all that goes, again, the small audience of people I know personally lets me explain that it’s all “best effort”. That said, I do take my own backups and high availability seriously and they benefit from that.
Privacy regulations are all fine and dandy, but even with the strictest ones in place,
They’re also subject to interpretation, regulatory capture, as well as just plain being ignored when it’s sufficiently convenient for the regulators to do so.
“There ought to be a law!” is nice, but it’s not a solution when there’s a good couple of centuries of modern regulatory frameworks having had existed, and a couple centuries of endless examples of where absolutely none of it matters when sufficient money and power is in play.
Like, for example, the GDPR: it made a lot of shit illegal under penalty of company-breaking penalties.
So uh, nobody in the EU has had their personal data misused since it was passed? And all the big data brokers that are violating it have been fined out of business?
And this is, of course, ignoring the itty bitty little fact that you have to be aware of the misuse of the data: if some dude does some shady shit quietly, then well, nobody knows it happened to even bring action?
Exactly. I’m just here to say that regulation isn’t a solution to corporate malfeasance - at best it is a patch until the corp lawyers figure out where the loopholes are or how to accomplish the malfeasance in a different way.
How exactly are “communities offering services” a different thing than “hosted software”?
It’s a lot easier to ask Matt down the street to customize or add a feature than it is to ask Google, FB, etc.
Case in point: I’ve run my own email server since 2013 or so. I’ve got friends and family that use it. One of my friends asked if there was any way to setup rules to filter emails and such. I was like “yep” and added on Sieve to Dovecot and setup the webmail (Roundcube at the time) with the Sieve plugin.
Granted, that’s a pretty basic feature that pretty much all commercial email providers offer, but the point is someone asked for it and I made it happen for them.
How exactly are “communities offering services” a different thing than “hosted software”?
I think what they’re saying is that the ideal wouldn’t be to force everyone to host their own, but rather for the people who want to run stuff to offer them to their friends and family.
Kinda like how your mechanic neighbor sometimes helps you do shit on your car: one person shares a skill they have, and the other person also benefits. And then later your neighbor will ask you to babysit their kids, and shit.
Basically: a very very goofy way of saying “Hey! Do nice things for your friends and family, because that’s kinda how life used to work.”
I’ve self hosted long before the privacy/subscription nightmare of modern cloud/SaaS platforms was a thing. I do it because I enjoy it (and at the time I got started, I had crap internet so having good local services like offline Wikipedia was important).
Not everyone has to self-host. I run lots of services, mostly for myself, but friends and family who don’t know a kernel driver from a school bus driver also use them. So the expectation that everyone self host is and always has been “pie in the sky”. And that’s okay.
Privacy regulations are all fine and dandy, but even with the strictest ones in place, you still do not own or control your data. You’re still subscribing to services instead of owning software. You can’t extend, modify, or customize hosted software. Self hosting FOSS applications addresses all of those.
So rather than expect everyone to self-host, we should be working towards communities offering services to one another, pooling resources, and letting those interoperate with each other.
To make fun of an old moral panic in the 90s: “It’s 11pm. Do you know where your data is?” Yep, it’s down the street in Matt’s house.
I can and do self host, but I’m not willing to provide these services for free. I don’t want to be responsible for other peoples passwords or family photos.
Thats where good, privacy-respecting services come into play. Instead of hosting for my neighbours, I would recommend mailbox.org, bitwarden, ente or a hosted nextcloud.
That’s okay, too.
For me, I only let people I know use them (friends and family) with the exception of my Lemmy instance, of course (and even that’s not wide open to the world).
I’d be running these for myself whether anyone else used them or not. Unless I’m hosting for hundreds of people, the cost to run these services is the same as it is just for myself. Granted, I don’t have people gaming the system trying to backup their entire PCs to their email inbox or Nextcloud, but that’s where the trust factor (and storage quotas) comes in.
As far as being responsible for all that goes, again, the small audience of people I know personally lets me explain that it’s all “best effort”. That said, I do take my own backups and high availability seriously and they benefit from that.
Note that you don’t know what the hosters know, store and/or sell about you.
There is no way to be 100% sure, but:
They’re also subject to interpretation, regulatory capture, as well as just plain being ignored when it’s sufficiently convenient for the regulators to do so.
“There ought to be a law!” is nice, but it’s not a solution when there’s a good couple of centuries of modern regulatory frameworks having had existed, and a couple centuries of endless examples of where absolutely none of it matters when sufficient money and power is in play.
Like, for example, the GDPR: it made a lot of shit illegal under penalty of company-breaking penalties.
So uh, nobody in the EU has had their personal data misused since it was passed? And all the big data brokers that are violating it have been fined out of business?
And this is, of course, ignoring the itty bitty little fact that you have to be aware of the misuse of the data: if some dude does some shady shit quietly, then well, nobody knows it happened to even bring action?
Exactly. I’m just here to say that regulation isn’t a solution to corporate malfeasance - at best it is a patch until the corp lawyers figure out where the loopholes are or how to accomplish the malfeasance in a different way.
But:
How exactly are “communities offering services” a different thing than “hosted software”?
Trust.
I trust my brother more than Google. Same with Jim down the street.
I trust my circle of acquaintances more than Google (et al) , especially since Google (et al) have demonstrated, repeatedly, to be untrustworthy.
In fact, they’ve demonstrated they are outright adversarial to me and mine.
It’s a lot easier to ask Matt down the street to customize or add a feature than it is to ask Google, FB, etc.
Case in point: I’ve run my own email server since 2013 or so. I’ve got friends and family that use it. One of my friends asked if there was any way to setup rules to filter emails and such. I was like “yep” and added on Sieve to Dovecot and setup the webmail (Roundcube at the time) with the Sieve plugin.
Granted, that’s a pretty basic feature that pretty much all commercial email providers offer, but the point is someone asked for it and I made it happen for them.
Also: Matt probably won’t sell my data to Palantir and ad tech businesses.
I think what they’re saying is that the ideal wouldn’t be to force everyone to host their own, but rather for the people who want to run stuff to offer them to their friends and family.
Kinda like how your mechanic neighbor sometimes helps you do shit on your car: one person shares a skill they have, and the other person also benefits. And then later your neighbor will ask you to babysit their kids, and shit.
Basically: a very very goofy way of saying “Hey! Do nice things for your friends and family, because that’s kinda how life used to work.”