Couple upgrades I have in the pipe to make things better in various areas of my infrastructure:
(Note: Historical task completion is now over at https://infrablog.lain.la/changelog-history)
(Green is done. Yellow/Orange is in progress. Red is not started. Purple is declined.)
- (Won't Do, for now) Multi-WAN.
- (Done!) I will be strengthening my authentication on my OpenVPN tunnels with a brand new, offline root PKI, as the current root CAs are not offline. Also changing config settings for security.
- (Coming eventually) I'd like to get IPv6 support across the board. I re-added this to the to-do list over the fear of dual stack networks phasing out in the future, especially on mobile phone networks.
- (Done!) Implement HSTS Preloading.
- (Won't Do) Fix SMTP emailer on APC Netbotz system (Convert from ISO-8859-1 to UTF-8) Note: I was able to configure one of my server iDRAC modules to email me if the intake temperature gets too toasty. This works around the problem.
- (Coming eventually) IPFS will now be a lain.la service, not a user service.
- (Done!) Cryptpad seems nice.
- (Coming eventually) Nginx has some status pages or something. Wonder what they say.
- (Coming eventually) Revive the galleries. (parameter stripping?)
- (Coming eventually) XMPP!
- (Coming eventually) A Firefox extension for Pomf.
- (Done!) Rearrange the transparency page to acknowledge frequent reporters.
- (Coming eventually) HCE. Bring it back. https://www.patreon.com/posts/68480803
- (Done!) Swap DD-WRT for PfSense on the core.
- (Done!) Cytube.
- (Coming eventually) Hentai6.
- (Coming eventually) I need to add an alert on a certain OpenVPN tunnel.
- (Coming eventually) A MUD sounds fun.
- (Done!) Some kind of S3 compatible storage.
- (Done!) Keybase would be good just in case someone tries the whole impersonation thing.
- (Done!) It seems that static ranges are now being applied in the US again for the Hentai nodes. Maybe we can spin up a bunch more here and offset the loss of the overseas nodes.
- (Done!) Finish the Seedbox split project.
- (Coming eventually) Kotobank Captcha Service (The secure one).
- (Done!) Change OpenVPN to a non-standard port.
- (Coming eventually) The public emailer needs TLS.
- (Coming eventually) The PhotoDNA project, of course.
- (Coming eventually) Replace the stream server entirely. (SRS/SRT/Owncast?)
- (Coming eventually) Fix the hentai graphs after Tenboro changed the H@H page...
- (Coming eventually) Release the source code for the NCMEC API system and Pomf integration. It occurs to me this is very useful stuff.
- (In Progress) Proxmox migration.
- (Coming eventually) Temporary Pomf.