Both #codeberg and #sourcehut are facing massive #ddos attacks. A lot of support to the admins of both platforms ✨❤
Also a reminder that attacking ethical code hosting platforms & nonprofits is literally a horrible thing to do! 😡
All the best to SourceHut, who are currently fighting a massive DDoS attack.
The same goes to Codeberg, where the SourceHut status page is hosted. They started being attacked at the same time and are also still fighting to restore their service: https://social.anoxinon.de/@Codeberg/111738997246741636
It's curious that this attack is targeting the two most important non-corporate software forges.
Now we have a basic subvol layout by default in #PostmarketOS, and when #sourcehut comes online again, I'll send a new patch with more comprehensive subvolume handling 🌠
Inspiré par la mise hors-ligne de #sourcehut, l’hébergeur de mon blog, une réflexion sur la pérennité d’une présence en ligne, le tout en lançant l’année des 20 ans de mon blog:
In real life: I hang out with my school's student theatre club, the RIT Players. I like #improv, #cycling, #racquetball, #transit, and traveling. I love my family.
I've had pretty much everything on #sourcehut -- as a paid subscriber -- for a couple of years, and it's been absolutely great. As with the #fediverse, it's gloriously free of the "what now?!" ToS garbage, AI shenanigans, and "you are the product" mentality of the larger platforms.
They're in the middle of a very hard core DDoS attack that's been basically going on since the 10th (it sounds like they are being targeted specifically -- which is a bit mind boggling).
Anyway, props to @drewdevault and the team. Sounds like they are not having a good time, but smaller devs like me really appreciate the work of smaller providers like them, and I want to wish everyone good luck sorting the whole thing out.
Somewhere in this world, there’s someone remotely controlling a huge amount of infected computers/iot devices and who decided, for unknown reason, that they should all permanently try to access #sourcehut .
The attack is so important that even the datacenter hosting #sourcehut was unable to handle it, which prompted an urgent move to a new one, in Europa. But the attack followed and the new datacenter is also on his knees.
Attacking free and open source software is honestly one of the lowest things you can do. People invest their spare time into creating something to help others who are looking for privacy, better tools or simply something that saves them some money because they can't afford paid options. Attacking that makes you the lowest of the low in society.
This week we’re joined by @drewdevault, talking about the Hare programming language 🐇
We discuss Hare (of course), why he’s so passionate about all things open source, the state of the language, fostering a culture that values stability, and oddly enough — what it takes to make a peanut butter and jelly sandwich 🥪
> Alternative search engines are neat, as are RSS feeds. OpenOrb is a self-hosted app which allows visitors to search over a list of blogs you love. If you put your 10 favourite blogs in there, it'll search just those blogs and not show you any sponsored content or machine-generated garbage.
I think after all that @drewdevault and the team have done and had to endure over these past couple of days. The least I can do is up my payments to #SourceHut for providing such an amazing service and for being so transparent about what's happening and why. In fact I think that everyone should think about doing the same, If they're able to afford it that is? :Blobhaj_Heart:
It’s crazy that the people targeting #sourcehut are now also targeting #codeberg. It’s either an all out attack against free (as in freedom) software platforms, or simply because they host sourcehut’s status page. Pathetic either way.
As a longtime provider of services in one form or another since the late 80's and early 90's, I felt the pain of having to write out the following blog post/update.
Drew is an opinionated perfectionist with an attention to detail and his perspective that chafes some, endears others, and deservedly, receives the respect earned when someone strives toward par excellence for those for whom they provide services for.
I have some differing set of conclusions from my understanding of what he laments as the ordeal he's been through in the past year, like, "why would anyone consider a carrier besides DHL for international overseas shipments?" Also, I fail to see the logic in moving his entire infra from the U.S. (where there are many affordable top-tier carrier hotels - aka datacenters) to Amsterdam, which also has fine facilities and maybe it is because of privacy concerns which depending on what those are, may indeed be quite valid from my perspective.
But not having IPv6 fully deployed (as a result of datacenter choice?) is puzzling, although almost inconsequential operationally, in production, ... Almost.
Considering I've always looked directly at the carriers themselves, used my own delegated IP infrastructure for core operations, I tend to look at a datacenter as three things:
Electricity
Fail-over electricity (Generators)
Air conditioning
Most folks rent a rack that comes with transit, I ask how much the XC is - I can find, mix, and pick my transit providers. I just wanna know that my shit is secure in a suite or cage behind locked cabinets that I personally have 24/7 access to at anytime (even though I'll rarely do so) and have 24/7 remote hands to swap drives, hot-pluggable power supplies and plug cables into the designated ports I specify, etc. Those things typically come w/zero cost.
For DDoS'ing, I do like to outsource this as part of a package, and I'm open to any offers of included transit/XC and want to know how much each additional 20A of electricity cost me each month in addition to the rack fees. Putting the onerous of protecting my customers from a good DDoS'ing on someone else like my upstream takes a lot of worry away.
Shipping machinery though, that's a bit distinct too, I've been burned a few times domestically, although always recovered my *tangible costs - time? well, I've lost a couple of customers because their infra was lost or damaged in transit, but insurance is important - Drew had that. What I'm really wondering though, is who besides DHL would you even trust to ship servers over the Atlantic Ocean?
That's a cost I would not consider skimping on - A girl I almost married worked for DHL for over 20 years and they'll cut a check at the drop of a hat, which might have worked out well for Drew considering these were old boxes ready for retirement anyway and the replacement cost (new stuffs) is what you insure for.
Anyway, I've really admired much of what Drew has done over the years, was cheerleading for him as he migrated from full time paycheck person to finally being able to announce that he "thinks" he can make enough money for a living by devoting himself full time to FOSS with his fledgling SourceHut.
Yah, sometimes his head swelled up pretty big, making it hard to fit through doorways, and I've butted heads with him here and there on technical matters only, but have always respected him, and in truth, he was never not correct even if his way was the wrong way, or there was simply a better way - usually those were matters of opinion coz there's more than six ways to Sunday to skin a cat.
Anyway, he's been kicked in the balls really hard, which if you know much of him, must have been really hard to lay all of that out in some manner of detail (He's almost always brutally transparent). For that, and moreover for getting right back up after being knocked down (maybe by da man?), I applaud his candidness. His devotion to those of you reading this that may have free repos at SourceHut, and I'm also encouraging everyone to kick in at least a few bucks - fuck that dumb app that you don't need, let alone pay $2.95 for the exclusive right to be tracked - I urge you with all FOSSiness in mind... Give it a read, and send him whatev, ... I guarantee it will come back to you tenfold.
Drew is a consummate FOSS warrior, do it for yourself, please - Five bucks, fifty bucks, heck, whatever isn't going to cut into your budget for porterhouse steak this weekend would be nice.
And it will make you feel good too.
Full disclosure: I'm not getting shit from this article. Drew and I only converse occasionally and usually it is to disagree - some folks are just good coz of what's in their heart, their commitment to the community, and whether you're a fan or not doing this for him really is doing this for yourself and everyone else in the FOSS world.
debugging tests that fail only in #gitlab#ci is the worst... #sourcehut absolutely has it right by allowing you to SSH into a runner that failed a job.