Small 2.5" HDDs are quite power efficient, but yes 500mb is kind of the limit where I also start questioning it it is worth to run them.

Anubis is not bad for privacy, but rather the opposite. Server admins explicitly chose it over commonly available alternatives to preserve the privacy of their visitors.

If you don’t like random Javascript execution, just install an allow-list extension in your browser 🤷

And no, it is not a PR slogan, it is the live experience of thousands of server admins (me included) that have been fighting with this for month now and are very grateful that Anubis has provided some (likely only temporary) relief from that.

And I don’t get what the point of an extra button would be when the result is exactly the same 🤷

Are you seriously complaining about an (entirely false) negative privacy aspect of Anubis and then suggest reCaptcha from Google is better?

Look, no one thinks Anubis is great, but often it is that or the website becoming entirely inaccessible because it is DDOSed to death by the AI scrapers.

They are much worse for accessibility, and also take longer to solve and are more distruptive for the majority of users.

Obviously I did that, but that just means the site becomes inaccessible even sooner.

Aha, an apologist for AI scraper DDOS, why didn’t you say so directly instead of wasting my time?

Yes, because Cloudflare routinely blocks entire IP ranges and puts people into endless captcha loops. And it snoops on all traffic and collects a lot of metadata about all your site visitors. And if you let them terminate TLS they will even analyse the passwords that people use to log into the services you run. It’s basically a huge survelliance dragnet and probably a front for the NSA.

Great that this is all theoretical 🤷 My server hardware might not be the newest but it is definitly not broken.

And besides, what good is that you can still barely access the server through ssh, when the cpu is constantly maxed out and site visitors only get a timeout when trying to access the services?

I don’t even get what you are trying to argue here. That the AI scraper DDOS isn’t so bad because in theory it shouldn’t crash the server? Are you even reading what you are writing yourself? 🤡

You are right, it is actually worse, it usually just overloads the CPU so badly that it starts to throttle and then I can’t even access the server via SSH anymore. But sometimes it also crashes the server so that it reboots, and yes that can happen on modern CPUs as well.

On different forges, which is what OP was talking about.

Are you explaining my own server to me? 🙄

The email address scope is commonly used as a shared identifyer for linking accounts.

And it was/is for sure the lesser evil compared to what most others did: put the site behind Cloudflare.

I feel people that complain about Anubis have never had their server overheat and shut down on an almost daily basis because of AI scrapers 🤦

Well, the situation in this case seems to be the exact opposite, i.e. reusing the same SSH key for multiple repos Vs. being easily able to have different passwords for different repos with a password-manager.

They can impersonate you and push code into the repos in your name with a high likelyhood of you not noticing it.

The typical hobby dev machine isn’t particularly secure and for sure less secure than the typical server. Accessing everything from there with a single key is a pretty gaping security hole IMHO.

There seems to be this common misconception that ssh keys are more secure than passwords, but that is only true when you use really weak passwords that you keep in your head instead of a password manager.

If you want to actually increase your security then you need to set up a second factor auth with a seperate device.

Ok, I understand that this is a bit inconvenient, but you can use a password manager for the required git push logins.

But you are not concerened that someone compromising your ssh keys gets full access to all your repos?

Convenient, yes. But if used like that quite insecure.

Why the need to push via ssh? I am genuinely wondering, since you can easily push without having that enabled at all.

Ah, you are probably right.

Looks pretty cool on first glance, but I think Opera Vivaldi had a Fediverse integration for some time already, so you are not the first to do so.