I'm not sure about doing a warrant canary tbh. It's going to be another responsibility to keep up on a regular basis (Raddle updated their canary monthly before they've made it irregular, and other companies do it every 6 months). Updating the canary itself is not the hard part (until you get an actual gag order), but rather remembering to do it lol. If you forget, users might think jstpst got compromised when it's not

If you're going to do it anyway, it might be a good idea to have at least one admin who is outside of 14 Eyes doing the cryptographic signing, so that a government agency from those countries couldn't just force an admin here to update the canary

i think that's possible but that's too sickening to even consider

maybe we should use shamir secret sharing between the three sysadmins so all three have to use a password to enter the database

Can u run a query to find out everyone whose down voted one of my posts please

Jokes aside, I do know how to make someone admin in an emergency. I would do it if something bad happened-- I don't wanna step outside my role.

Jokes back, just let me know who u want banned <3

Can't you just rejigger the db? Make me an admin so I can do it

can't, u gotta ask an admin

i am a lowly sysadmin

TODO: ban /u/oneviolence

clap

Have you considered taking the effort pill?

I believe that's my job and I'm being lazy

How's about custom themes?

yay!!! Thank you so much!!!

in the 15 minutes since making this post i did sooo much. please clap

Yah I big support this. I appreciate your posts even if they take me an embarrassingly long time to get to :3

i dunno ask dadtesla

yeah i dont know why that one is pinned either lol

Well /f/game_theories only has 7 subscribers

it has 4 subscribers

Nah I don't even use Kali lol. I just wanna see jstpst go blazing fast as possible without a CDN :P

but sadly, there are no funny ones.

i beg to differ. 320 blaze it.

Are you pentesting jstpst.net?

Please don't delete all of our posts if you find an exploit

it does! i'm just working from my phone, so if something somehow goes wrong, i don't wanna leave jstpst down while trying to fix it on a phone

Ah I see, thanks. In nginx I always use return instead of rewrite (which seems to be the closest to Caddy's redir) so I have to always specify the http response code.

but it won't take effect until I restart it.

Does Caddy not have a reload command like nginx does where you don't have to restart the server to apply the config changes?

dang. we live in a postmill

The Caddyfile uses a redir directive for www.jstpst.net, which is 302 (temporary) by default. I never looked into it lol. I went in and changed this to a 308 but it won't take effect until I restart it.

That redirects to jstpst.net which is in a separate Caddy entry, which is a reverse proxy over the Docker on port 80. Caddy has HTTP by default and redirects http to https, so I'm guessing that's 308.

That said, as a joke, Caddy lets you use any 3XX code, but sadly, there are no funny ones.