I mean, the basic config file for Caddy is 1 line, and gives you Let’s Encrypt by default. The entire config file for a reverse proxy can be as few as 3 lines:

my.servername.net {
   reverse_proxy 127.0.0.1:1234
}

It’s a single executable, and a single 3-line file. Caddy is an incredible piece of software.

Nope! No security concerns!

But, seriously, if one machine in the Wireguard network is compromised, attacks can be launched on any other machine in that Wireguard subnet. At that point, whether you’re running Wireguard or not is irrelevant.

For your specific setup, the weak point is the VPS. Everything is good, but if someone successfully beaks into an account on your VPS with access to the Wireguard device (and almost nobody goes through the effort of constraining network devices by account, and of course there’s always root) they can launch attacks on any machine in the WG subnet.

It’s a little better if you’re running containers and they’re secure, but even then there are security considerations with containers. Still, that’s about the best you’re going to get: anything listening to any external internet port is running in a container with no resource runtime, and those ideally each only have limited access to the ports in the WG subnet that they need. Eg, something like:

In your diagram, your VPS is just a gateway. If the only way to log into the VPS is over WG; and if the reverse proxy is running in a locked-down container; then this is about a secure as you can make it and still allow public access.

Or: if the only way your VPS is at all accessible is over WG – all clients have to be connected to it via VPN – then it’s reasonably secure as long as no client is compromised. Then your remote devices become the weak points.

To quote stupidcasey:

think fascism literally means to fassen together like a bundle of sticks that is harder to break than one stick

But also… What?

Thank you. I may try it; postfix seems to give me grief ever other update, like they can’t leave the damned config file alone.

Established monotheistic religions dogma nearly always has their god as a male. You find female gods in polytheism; Wicca recognizes a goddess who tends to be considered “the top god”, but it’s a polytheistic religion with deities of both sexes (modern Wiccaanism may have adopted genderless deities for inclusively, idk). I an aware of no major monotheistic religions that allow that god may have no gender.

OP is speculating about “a” god, implying one of the monotheistic religions, and probably Christianity or Judaism - in both of which God is absolutely and unarguably defined as male. They’re religions defined by men, naturally with a man at top.

If you’re going to throw out Jehova and Allah and all the other dogmatically male gods of popular monotheistic religions, why not just shit-can the whole absurd idea of religion instead of trying to twist it to yet another different silly religion?

I miss the old days, before you had to worry about spam.

I’m not OP, and I have everything set up fine now; Mailcow would replace what I currently have with the same software components, so I don’t see any value there - for myself.

Something like Maddy is completely at odds with the Unix philosophy, and yet I’ve fought enough with postfix to dislike it enough to want to try an all-in-one. I dread the DKIM setup, though; that took so much time, and the mail server configuration wasn’t the hard part. Maybe now I’ve got it configured for my domains, switching email server software will be easier.

I was going to ask if anyone had experience with Maddy, which is an all-in-one solution I’ve been eyeballing for a while.

Getting DKIM and postfix set up correctly was such a PITA, and then dovecot, I’m nervous about having to go through all that again and fretting about accidentally configuring an open relay, so I haven’t tried it yet. But it looks nice, and has been around for a couple of years.

Get. Out. Really? So, if you shoplift a greeting card when you’re in your teens, you have to keep looking over your shoulder and expect a knock on your door even when you’re 80?

I wondered; I wasn’t sure how the chemistry of this worked, because of the existence of edibles.

Chemistry is a massive knowledge gap for me.

It does if you do it a lot and then resell it. Which is what happened to a bunch of people in the days of Napster, and is exactly what these fuckers are doing.

Close enough. East coast.

Yeah, I think you’re right; his photo album is all … not US.

Nephila occur globally, but I always thought there were significant regional differences. But, as I said, that looks exactly like the ones in Pennsylvania.

Where are you located?

Ok, no shade, sincerely, but this whole post is so sketch.

Arrests? Like for other copyright violators?

Oh, lordy. This is a fight I really hope happens. Meta vs the combined DMCA lobby.

Ohpleaseohpleaseohplease

Definitely Nephila. Golden Orb Weavers like this are common in the mid-Atlantic. We had one that looked exactly like this living in a boxwood bush in our front yard in Pennsylvania. Enormous, and beautiful.

I’m betting OP is in North America, probably East coast.

Huh. After looking at their other pics, it does look like they don’t live in the US. You may be right on the genus, but darned if that doesn’t look exactly like our lady.

It looks more realistic than the original.

Really? Or did you add the ripples? I can’t tell if you’re joking. You just be.

We’re getting soft. Back in the old days, why, we’d dig up the old bastard and rebury him in non-consecrated ground! That’d teach him.

Now that I look again, I can’t tell of that’s a jet or a leaf floating on the water.

TA says there were a series of photos, and the jet circled, so I assume it’s a reflection or something, but… yeah, if they had a series of pics, this must be one of the worst, least convincing ones they could have picked for the article.