https://github.com/jgraph/drawio/blame/dev/LICENSE <-- that’s … a rather specific and recent change. Is there a story here ?

You are aware that draw.io is itself open source and self-hostable: https://github.com/jgraph/drawio ?

At $dayjob I switched from Apache to nginx 15+ years ago. It’s Callback/Event based process model ran circles around Apache’s pre-fork model at the time. It was very carefully developed to be secure, and even early on it had a good track record. Being able to have nginx handle static content without tying up a backend worker process was huge, and let us scale our app pretty well for the investment of time. Since then, Apache implemented threaded + Event based process models, Caddy, traefik, and a bunch of others have entered the scene.

TBH, I think the big thing nowadays is sane defaults, and better configuration, even automatically discovered configuration – traefik is my current favorite for discovering hosts in consul/Kubernetes/simple host definition files, but since traefik can’t directly serve files, I simply proxy from traefik to … nginx :)

Navidrome is another server that works pretty well, implements the subsonic protocol ( so all the apps that can cache and stream to your mobile device work). You can have multiple logins, or just share out playlists and albums individually to non-authenticated users.

TacticalRMM is very comprehensive, self hosted, but more geared towards organizations managing a fleet of machines.

Don’t UWU! That’s a $350 fine!!!

https://pairdrop.net is FOSS, cross platform, realtime, peer-to-peer, and only needs a browser. You can host your own version if you prefer. In contrast, Firefox Send (also FOSS) was ‘asynchronous’ (you could upload, and then email a link), but it was shut down due to abuse. https://github.com/timvisee/send is a fork of the archived github project that you can self host with many improvements, notably authentication, so only yourself and trusted users can upload. (edit: wrong link for ff send)

I see this said every time this comes up.

Are there any efforts starting or even attempting this? Or even taking an existing printer and replacing it’s main board?

Could be too much pressure – double check your z-offset/leveling? I had it so bad, and didn’t realize it, … and wore out the original brass gear :(. The nozzle was pushed right up against the bed, so it was trying so hard to push out filament that wasn’t going anywhere.

Planka looks very promising too

TOR needs to have a lot of ‘background noise’ legit use, otherwise the folks needing to hide in the weeds stick out like a sore thumb.

As an anecdote – I have been sitting on an elastic IP at AWS for years, with reverse DNS configured properly for it. Way early on (years ago), some spam filters would block the whole netblock, but I can’t remember the last time the IP Block was wholesale blocked. I think AWS is very much on top of any spam complaints from their Elastic IPs, and as long as you don’t abuse your specific IP, you are in good shape for light volume, non-spam mail.

LMTP support would be nice too: existing mail routing infrastructure could send messages into stalwart-managed mailboxes. (Edit: reading the docs, they do support LMTP! This is awesome)

A single binary can be invoked with different privilege levels. OpenSSH, for example is a single binary, but uses OS privilege separation when setting up connections from the root-owned daemon. (Just to be clear, I’m not sure that stalwart is using this technique, just that single binary apps do not exclude the possibility of OS privilege separation.)