I’m thinking about self-hosting my own Lemmy server and I probably have too many questions than answers. But maybe some simple ones… do server owners get to set the amount of days a post can be retained before it’s deleted or are there defaults baked into the software package?

Can server owners restrict image sizes or the number of images that can be uploaded?

Can a server owner restrict the creation of new communities? I’m curious how granular permissions can get.

Would I be better off hosting my own instance to get some of these questions answered? 😁

Thanks in advance!

  • kensand
    link
    fedilink
    English
    arrow-up
    8
    ·
    2 months ago

    I self hosted a Lemmy instance for a little while, but I stopped over concerns of malicious actors posting CSAM which would then get federated over to my server. I don’t have the appetite to deal with that, and I’m glad I shut it down because just a few weeks later there was a big instance of it happening all over Lemmy, and I’m sure I would have had to deal with cleaning it up on my server too. Just something to keep in mind.

    Otherwise though, the setup process isn’t too complex.

    • Eternal_Dark_1227@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      3
      ·
      2 months ago

      Couldn’t you just block all media uploads (images and video) and restrict URL links from shady sites to prevent that kind of stuff?

      • kensand
        link
        fedilink
        English
        arrow-up
        5
        ·
        2 months ago

        Sure, but then you’re left with text only and are relying on your blocklist for URLs, which is just going to be a game of whack-a-mole. I personally didn’t want to have to worry about that in my free time, but I’m sure other folks feel differently.

        • Eternal_Dark_1227@lemmy.worldOP
          link
          fedilink
          English
          arrow-up
          2
          ·
          2 months ago

          The opposite of a blocklist is an allow list that lets you permit trusted sources that already scan their content for CSAM. Lemmy and Reddit are nothing more than URL link aggregators that allow people to comment on content that gets shared unlike Mastodon that’s built on a web of trusted connections.

          • kensand
            link
            fedilink
            English
            arrow-up
            3
            ·
            2 months ago

            Regardless of whether you are using a block or an allow list, you have to maintain the list…

            I’m not sure what your point is; if you want to devote your time, effort, and potential liabilities to it, that’s up to you. I just figured I would share a perspective on why I didn’t want to do that.

            I appreciate all the hard work done by instance hosts; using individual Lemmy instances are a privelege, not a right. I would fully understand and not be upset if my home instance were to shut down at a moments notice.

            • Eternal_Dark_1227@lemmy.worldOP
              link
              fedilink
              English
              arrow-up
              2
              ·
              2 months ago

              Gotcha yea no I really appreciate the input. I may share a blog to help admins in-general with the CSAM problem, at least share some thoughts. My other job is in cybersecurity. Constantly dealing with bad actors.