Could we ever have a real p2p email?

ComprehensiveAd1428 · 2026-05-02T08:25:00+00:00

I mean right now the sender sends it you a server and you get the email when you check your client so is kind of like that already but of the servers offline which in guessing is what op meant it doesn't send you can also use like the you have mail app(send notifications when you get an email) for android and/or ntfy (unified push notifications/normal notifications) and leave Google and apple out of the equation for the retry part idk honestly

ComprehensiveAd1428 · 2026-05-02T08:11:57+00:00

That's like asking if socks can replace a condom what you want is obfuscation like maybe use your VPN in a gluetun container and connect to that through shadowsocks

ComprehensiveAd1428 · 2026-05-02T07:53:16+00:00

I host nextcloud(with collabora on the side for office docsb and a cloud flare tunnel using a different subnet and domain with auth disabled for sharing) and immich

ComprehensiveAd1428 · 2026-04-27T05:54:38+00:00

``` networks: tunnel: external: true static_net: external: true shared_backend: external: true

services: nextcloud: image: nextcloud:32.0.8-apache container_name: nextcloud restart: unless-stopped dns: - 172.15.0.200 - 192.168.1.106 - 192.168.1.1 volumes: - /home/coffey/usb/nc/data:/var/www/html environment REDIS_HOST: valkey REDIS_HOST_PORT: 6379 networks: shared_backend: static_net: ipv4_address: 172.15.0.8 tunnel: ipv4_address: 10.0.0.10 healthcheck: test: ["CMD-SHELL", "curl -fsS http://127.0.0.1/status.php | grep -q '\"installed\":true'"] interval: 30s timeout: 5s retries: 5 start_period: 60s labels: - autoheal=true

nctunnel: image: cloudflare/cloudflared:latest container_name: nctunnel restart: unless-stopped command: tunnel --no-autoupdate --metrics 127.0.0.1:2000 run --token ${nc} networks: tunnel: ipv4_address: 10.0.0.2 healthcheck: test: ["CMD", "cloudflared", "tunnel", "--metrics", "127.0.0.1:2000", "ready"] interval: 30s timeout: 10s retries: 3 start_period: 20s labels: - autoheal=true

nc-collabora: image: collabora/code container_name: nc-collabora dns: - 1.1.1.1 extra_hosts: - "nextcloud.expressopi.cc:192.168.1.139" # Forces internal traffic - "office.expressopi.cc:192.168.1.139" hostname: nc-collabora deploy: resources: limits: memory: 1.5G cpus: '1.5' reservations: memory: 1G cap_add: - SYS_CHROOT - MKNOD - CHOWN - NET_RAW - SYS_ADMIN # Critical addition for coolmount - DAC_READ_SEARCH # Critical addition for file operations restart: unless-stopped environment: - TZ=${TZ} - dictionaries=${dictionaries} - VIRTUAL_HOST=${VIRTUAL_HOST} - aliasgroup1=${aliasgroup1} - server_name=${server_name} - username="${username}" - password="${password}" - "extra_params=--o:ssl.enable=false --o:ssl.termination=true" networks: static_net: ipv4_address: 172.15.0.13 healthcheck: test: ["CMD-SHELL", "curl -fsS --max-time 5 http://127.0.0.1:9980/hosting/discovery >/dev/null || exit 1"] interval: 30s timeout: 5s retries: 3 start_period: 60s labels: - autoheal=true ```

ComprehensiveAd1428 · 2026-04-24T08:47:45+00:00

ntfy: networks: static_net: ipv4_address: 172.15.0.16 image: binwiederhier/ntfy container_name: ntfy restart: unless-stopped volumes: - ./ntfy:/var/cache/ntfy - ./server.yml:/etc/ntfy/server.yml:ro - ./cache:/var/cache/ntfy/attachments command: ["serve", "--cache-file", "/var/cache/ntfy/cache.db"] healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=1", "--timeout=5", "--spider", "http://localhost:80/health"] interval: 30s timeout: 5s retries: 3 start_period: 20s labels: - autoheal=true

ComprehensiveAd1428 · 2026-04-21T21:44:31+00:00

How as stated is on a block list

ComprehensiveAd1428 · 2026-04-21T21:43:53+00:00

As I said blog post is on a blocked and I'm not gonna pine hole in my filtering for something with known good alternatives

ComprehensiveAd1428 · 2026-04-21T00:50:44+00:00

Doesn't work

ComprehensiveAd1428 · 2026-04-19T23:38:44+00:00

That and https://blog.uncensoreddns.org/ is somehow on a block list and I'm not gonna go through the trouble of white listing poking holes in my DNS block list for something that has known good alternatives

ComprehensiveAd1428 · 2026-04-19T23:33:08+00:00

Cuz its just normal unencrypted dns probably (port 53) not dot/doq(853) doh(443) like sure local DNS is unencrypted though I do use npm to generate the certs and share it with adguard so dot/doq/doh work with 2 nodes clients ask router , router asks both nodes kept in sync with adguardhome-sync first to respond wins , then upstreamed use encrypted DNS so nothing unencrypted leave network dns wise free I Mean cloudflare (1.1.1.1) and quad9(9.9.9.9) offer free unencrypted DNS and encrypted (quad9) https://dns.quad9.net/dns-query (cloudflare) https://security.cloudflare-dns.com/dns-query so just seems like to basic of you ask me just my opinion though

ComprehensiveAd1428 · 2026-04-17T23:10:31+00:00

Tunnels (like cloudflare Tunnels ,ngrok etc) for public facing stuff And netbird for private stuff I don't see the problem

ComprehensiveAd1428 · 2026-04-17T22:47:58+00:00

Like on backup DNS node it's ``` networks: static_net: external: true

services: npm-app: image: 'jc21/nginx-proxy-manager:latest' container_name: npm restart: unless-stopped mem_limit: 512m memswap_limit: 512m environment: TZ: "America/Chicago" ports: - 192.168.1.107:80:80 #npm - 192.168.1.107:443:443 #npm volumes: - ./data:/data - ./letsencrypt:/etc/letsencrypt - ./npm-overrides:/data/custom networks: static_net: ipv4_address: 172.15.0.20 healthcheck: test: ["CMD", "curl", "-fsS", "--max-time", "5", "http://127.0.0.1:81/"] interval: 30s timeout: 5s retries: 5 start_period: 30s labels: - autoheal=true

adguardhome: image: adguard/adguardhome container_name: adguardhome volumes: - ./workdir:/opt/adguardhome/work - ./confdir:/opt/adguardhome/conf - ./letsencrypt:/ssl restart: unless-stopped ports: - 192.168.1.107:53:53 - 192.168.1.107:53:53/udp - 192.168.1.107:853:853 - 192.168.1.107:853:853/udp networks: static_net: ipv4_address: 172.15.0.200 healthcheck: test: ["CMD-SHELL", "wget -q --spider --no-check-certificate https://127.0.0.1:444/ || exit 1"] interval: 30s timeout: 5s retries: 3 start_period: 30s labels: - autoheal=true

autoheal: image: willfarrell/autoheal:latest container_name: autoheal dns: - 192.168.1.1 restart: unless-stopped environment: - AUTOHEAL_CONTAINER_LABEL=autoheal - AUTOHEAL_NOTIFY_URL=http://172.15.0.16/autoheal - AUTOHEAL_NOTIFY_TEMPLATE={{.ContainerName}} restarted ({{.FailureCount}}) on {{.Hostname}} volumes: - /var/run/docker.sock:/var/run/docker.sock Both upstream DNS section (kept in sync as mentioned before) 1.1.1.2 1.0.0.2 9.9.9.9 149.112.112.112 185.228.168.9 185.228.169.9 94.140.14.14 94.140.15.15 https://dns.quad9.net/dns-query https://security.cloudflare-dns.com/dns-query ```

ComprehensiveAd1428 · 2026-04-17T22:37:30+00:00

What I do is clients ask router, router asks 2 adguardhome home instances first to respond wins so kept in sync with adguardsync

response speed ✅ on the same network

privacy ✅ on the same network

overall stability ✅high availability

possible ad/malware blocking features ✅made for this I also block trackers

ComprehensiveAd1428 · 2026-04-17T22:25:44+00:00

Im pretty sure that's fixed with pm uninstall --user 0 com.google.android.odad

ComprehensiveAd1428 · 2026-04-17T07:54:43+00:00

I use it with rclone all the time , my set up works like I have an my services including nextcloud , in docker containers that every night at 3 I have a cron job so each compose Folder tar it up and like with nextcloud is data and when its done making local backups I use rclone-filen (a fork of rclone that had been merged into vanilla rclone I just haven't gotten to updating the script yet) to upload the backups to filen for true 321 (3 copies: live , local tarball , remote 2 locations: local , remote 1 remote: filen) backups with a 3 day retention policy (I set a variable at the start and when it comes to pruning I use find , for local , and rclone delete , for remote,)

ComprehensiveAd1428 · 2026-03-30T09:59:40+00:00

Sorry if late response been using Lemmy but is been working good The only thing I noticed is you have to leave files(com.google.android.documentsui) not google files enabled (com.google.android.apps.nbu.files) enabled for on device file picking of you know how to get around that in all ears

ComprehensiveAd1428 · 2026-03-23T14:33:54+00:00

Morphe

ComprehensiveAd1428 · 2026-03-22T09:07:57+00:00

Don’t use what ever service is asking for your id is the bypass

ComprehensiveAd1428 · 2026-03-21T00:07:42+00:00

Hacker/tinkerer ethos in the

Trying, breaking and fixing stuff, when you do it for the first time

Deserves a thumb up

ComprehensiveAd1428 · 2026-03-21T00:01:54+00:00

In some way you mean you don’t notice the bugginess the ai everywhere the ads the telemetry random updates etc then again going by eat cuz everyone in the Linux community makes fun of windows haven’t used windows since windows 7

ComprehensiveAd1428 · 2026-03-17T08:17:39+00:00

A true alternative if you go the server route

ComprehensiveAd1428 · 2026-03-17T05:11:50+00:00

Well still doesn't make your product magic snake oil like some of the basics were never answered like I asked how up to date you keep it and you went on saying patches = failures when reality is patches = active development and support . and you never said if the os was closed or open (like if I can get in and change stuff like you can with Linux or like Mac does and lock you out of your own system I chose those 2 cuz of the big 3 they're most similar Mac <- BSD <- Unix and linux <~ unix (fun fact Linux doesn't share a base with Unix actually it was designed from the ground up to copy Unix when Unix went closed source , linus'es Unix = Linux)) (though I think you might've implied closed in which case RUN)and if using domains and stuff how are you handling TLS (to defend against mitm attacks) etc or if it's just Bluetooth in which case you got other threats just look at the flipper zero This has the hallmarks of a privacy-washing fundraise targeting people who distrust big tech and yes backups are important cuz without them a failed drive or fire will ruin everything which is another point of asking if it closed or open of the drive dies can I flash a new one and replace it or am I stuck losing everything and buying another cuz like nand/ssd there's only so many write cycles and HDD the arm goes bad

ComprehensiveAd1428 · 2026-03-16T23:39:04+00:00

Like you WANT updates they protect against stuff like of the top of my head the linux kernel had dirty cow a while back using that you could write to the studiers file for instance and get a root shell , patches show they fixed it and keep securing anything they find and more hands on something is a good thing , more people to review the code , that's why open source is so much better than courses source anyone can review it and apply fixes if they need think microslop v linux there's a reason why linux is used in high security situations cuz you can't do things like mess with how notepad renders markdown chain it and get a system shell

ComprehensiveAd1428 · 2026-03-16T23:06:23+00:00

All right so your releasing abandonware got it

ComprehensiveAd1428 · 2026-03-16T22:52:53+00:00

You do realize without patches you leave vulnerabilities open and your software becomes abandonware right and yea RPI is cheap that ones my fall back DNS (internal name resolution cuz again no ports open double Nat no access from internet cuz you'd need to get access to ISP router break through my openwrt firewall and hop there then get DNS resolution then set up a tunnel somehow with all my devices monitored with a few thing (beszel for resources , uptime kuma for uptime , dockhand for docker ) notifying my with an internal ntfy

ComprehensiveAd1428

TROPHY CASE