Couple upgrades I have in the pipe to make things better in various areas of my infrastructure:

(Note: Historical task completion is now over at https://infrablog.lain.la/changelog-history)

(Green is done. Yellow/Orange is in progress. Red is not started. Purple is declined.)

  • (Won't Do, for now) Multi-WAN.
  • (Done!) I will be strengthening my authentication on my OpenVPN tunnels with a brand new, offline root PKI, as the current root CAs are not offline. Also changing config settings for security.
  • (Coming eventually) I'd like to get IPv6 support across the board. I re-added this to the to-do list over the fear of dual stack networks phasing out in the future, especially on mobile phone networks.
  • (Done!) Implement HSTS Preloading.
  • (Won't Do) Fix SMTP emailer on APC Netbotz system (Convert from ISO-8859-1 to UTF-8) Note: I was able to configure one of my server iDRAC modules to email me if the intake temperature gets too toasty. This works around the problem.
  • (Coming eventually) IPFS will now be a lain.la service, not a user service.
  • (Done!) Cryptpad seems nice.
  • (Coming eventually) Nginx has some status pages or something. Wonder what they say.
  • (Coming eventually) Revive the galleries. (parameter stripping?)
  • (Coming eventually) XMPP!
  • (Coming eventually) A Firefox extension for Pomf.
  • (Done!) Rearrange the transparency page to acknowledge frequent reporters.
  • (Coming eventually) HCE. Bring it back. https://www.patreon.com/posts/68480803
  • (Done!) Swap DD-WRT for PfSense on the core.
  • (Done!) Cytube.
  • (Coming eventually) Hentai6.
  • (Coming eventually) I need to add an alert on a certain OpenVPN tunnel.
  • (Coming eventually) A MUD sounds fun.
  • (Done!) Some kind of S3 compatible storage.
  • (Done!) Keybase would be good just in case someone tries the whole impersonation thing.
  • (Done!) It seems that static ranges are now being applied in the US again for the Hentai nodes. Maybe we can spin up a bunch more here and offset the loss of the overseas nodes.
  • (Done!) Finish the Seedbox split project.
  • (Coming eventually) Kotobank Captcha Service (The secure one).
  • (Done!) Change OpenVPN to a non-standard port.
  • (Coming eventually) The public emailer needs TLS.
  • (Coming eventually) The PhotoDNA project, of course.
  • (Coming eventually) Replace the stream server entirely. (SRS/SRT/Owncast?)
  • (Coming eventually) Fix the hentai graphs after Tenboro changed the H@H page...
  • (Coming eventually) Release the source code for the NCMEC API system and Pomf integration. It occurs to me this is very useful stuff.